CyberAlerts

CVE-2024-53787

WordPress Random Banner plugin <= 4.2.9 - Cross Site Scripting (XSS) vulnerability

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vinoth06 Random Banner allows Stored XSS.This issue affects Random Banner: from n/a through 4.2.9.

CVSS: MEDIUM (6.5)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

CVE-2024-53760

WordPress Capitalize My Title WordPress plugin <= 0.5.3 - Cross Site Scripting (XSS) vulnerability

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Capitalize My Title allows Stored XSS.This issue affects Capitalize My Title: from n/a through 0.5.3.

CVSS: MEDIUM (6.5)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

CVE-2024-45520

WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1 allows a remote Denial of Service because of memory corruption during scanning of a PE32 file.

Description: WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1 allows a remote Denial of Service because of memory corruption during scanning of a PE32 file.

CVSS: LOW (0.0)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

Multiple vulnerabilities in UNIVERGE IX/IX-R/IX-V series routers

Description: UNIVERGE IX/IX-R/IX-V series routers provided by NEC Corporation contain multiple vulnerabilities.

Source: Japan Vulnerability Notes (JVN)

December 2nd, 2024 (6 months ago)

CVE-2024-53752

WordPress Stripe Donation plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Berg Informatik Stripe Donation allows Stored XSS.This issue affects Stripe Donation: from n/a through 1.2.5.

CVSS: MEDIUM (6.5)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

CVE-2024-53750

WordPress PayPal Responder plugin <= 1.2 - CSRF to Stored XSS vulnerability

Description: Cross-Site Request Forgery (CSRF) vulnerability in Maeve Lander PayPal Responder allows Stored XSS.This issue affects PayPal Responder: from n/a through 1.2.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

CVE-2024-53749

WordPress Post Carousel Slider for Elementor plugin <= 1.4.0 - Cross Site Scripting (XSS) vulnerability

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Plugin Devs Post Carousel Slider for Elementor allows Stored XSS.This issue affects Post Carousel Slider for Elementor: from n/a through 1.4.0.

CVSS: MEDIUM (6.5)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

CVE-2024-53748

WordPress WP Mermaid plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Terry Lin WP Mermaid allows Stored XSS.This issue affects WP Mermaid: from n/a through 1.0.2.

CVSS: MEDIUM (6.5)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

CVE-2024-53747

WordPress Video Player for WPBakery plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NuttTaro Video Player for WPBakery allows Stored XSS.This issue affects Video Player for WPBakery: from n/a through 1.0.1.

CVSS: MEDIUM (6.5)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

CVE-2024-53746

WordPress Elementor Button Plus plugin <= 1.3.3 - Cross Site Scripting (XSS) vulnerability

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FlickDevs Elementor Button Plus allows Stored XSS.This issue affects Elementor Button Plus: from n/a through 1.3.3.

CVSS: MEDIUM (6.5)

EPSS Score: 0.04%

Source: CVE

December 2nd, 2024 (6 months ago)

Threat and Vulnerability Intelligence Database

Example Searches: