Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-54314 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NicheAddons Primary Addon for Elementor allows Stored XSS.This issue affects Primary Addon for Elementor: from n/a through 1.6.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54313 |
Description: Path Traversal vulnerability in FULL. FULL Customer allows Path Traversal.This issue affects FULL Customer: from n/a through 3.1.25.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54311 |
Description: Missing Authorization vulnerability in i.lychkov Mark New Posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mark New Posts: from n/a through 7.5.1.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54310 |
Description: Missing Authorization vulnerability in Aslam Khan Gouran Gou Manage My Account Menu allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Gou Manage My Account Menu: from n/a through 1.0.1.8.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54309 |
Description: Insertion of Sensitive Information Into Sent Data vulnerability in wpdebuglog PostBox allows Retrieve Embedded Sensitive Data.This issue affects PostBox: from n/a through 1.0.4.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54308 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CurrencyRate.today Cryptocurrency Price Widget allows Stored XSS.This issue affects Cryptocurrency Price Widget: from n/a through 1.2.3.
CVSS: MEDIUM (5.9) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54307 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in AIpost AIcomments allows Cross Site Request Forgery.This issue affects AIcomments: from n/a through 1.4.1.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54306 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in KCT AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot allows Cross Site Request Forgery.This issue affects AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot: from n/a through 1.6.2.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54300 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Neuralabz LTD. AutoWP allows Cross Site Request Forgery.This issue affects AutoWP: from n/a through 2.0.8.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54298 |
Description: Missing Authorization vulnerability in Bill Minozzi Car Dealer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Car Dealer: from n/a through 4.46.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|