Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-54323 |
Description: Missing Authorization vulnerability in WPExpertsio New User Approve allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects New User Approve: from n/a through 2.6.2.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54321 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Hive Support Hive Support – WordPress Help Desk allows Cross Site Request Forgery.This issue affects Hive Support – WordPress Help Desk: from n/a through 1.1.2.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54318 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in nicejob NiceJob allows Stored XSS.This issue affects NiceJob: from n/a through 3.6.5.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54317 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Google Web Stories allows Stored XSS.This issue affects Web Stories: from n/a through 1.37.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54316 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NicheAddons Restaurant & Cafe Addon for Elementor allows DOM-Based XSS.This issue affects Restaurant & Cafe Addon for Elementor: from n/a through 1.5.8.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54315 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NicheAddons Events Addon for Elementor allows DOM-Based XSS.This issue affects Events Addon for Elementor: from n/a through 2.2.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54314 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NicheAddons Primary Addon for Elementor allows Stored XSS.This issue affects Primary Addon for Elementor: from n/a through 1.6.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54313 |
Description: Path Traversal vulnerability in FULL. FULL Customer allows Path Traversal.This issue affects FULL Customer: from n/a through 3.1.25.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54311 |
Description: Missing Authorization vulnerability in i.lychkov Mark New Posts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mark New Posts: from n/a through 7.5.1.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|
|
CVE-2024-54310 |
Description: Missing Authorization vulnerability in Aslam Khan Gouran Gou Manage My Account Menu allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Gou Manage My Account Menu: from n/a through 1.0.1.8.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
December 14th, 2024 (5 months ago)
|