Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-54230 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPRealizer Unlock Addons for Elementor allows DOM-Based XSS.This issue affects Unlock Addons for Elementor: from n/a through 1.0.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54228 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebOccult Technologies Pvt Ltd Wot Elementor Widgets allows DOM-Based XSS.This issue affects Wot Elementor Widgets: from n/a through 1.0.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54227 |
Description: Missing Authorization vulnerability in theDotstore Minimum and Maximum Quantity for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Minimum and Maximum Quantity for WooCommerce: from n/a through 2.0.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54226 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Karl Kiesinger Country Blocker allows Stored XSS.This issue affects Country Blocker: from n/a through 3.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54225 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in CodegearThemes Designer allows PHP Local File Inclusion.This issue affects Designer: from n/a through 1.3.3.
CVSS: HIGH (7.5) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54224 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QuomodoSoft ElementsReady Addons for Elementor allows DOM-Based XSS.This issue affects ElementsReady Addons for Elementor: from n/a through 6.4.7.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54223 |
Description: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Contact Form - Repute InfoSystems ARForms Form Builder allows Code Injection.This issue affects ARForms Form Builder: from n/a through 1.7.1.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54220 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Roninwp FAT Services Booking allows Stored XSS.This issue affects FAT Services Booking: from n/a through 5.6.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54219 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Thehp AIO Contact.This issue affects AIO Contact: from n/a through 2.8.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|
|
CVE-2024-54218 |
Description: Missing Authorization vulnerability in Thehp AIO Contact.This issue affects AIO Contact: from n/a through 2.8.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 10th, 2024 (5 months ago)
|