CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-56302 |
WordPress ConvertCalculator for WordPress plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ConvertCalculator ConvertCalculator for WordPress allows Stored XSS.This issue affects ConvertCalculator for WordPress: from n/a through 1.1.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56268 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Hait Post Grid Elementor Addon allows Stored XSS.This issue affects Post Grid Elementor Addon: from n/a through 2.0.18.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56267 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fla-shop.com Interactive UK Map allows Stored XSS.This issue affects Interactive UK Map: from n/a through 3.4.8.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56266 |
Description: Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.8.
CVSS: MEDIUM (6.3) EPSS Score: 0.05%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56264 |
Description: Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector allows Upload a Web Shell to a Web Server.This issue affects ACF City Selector: from n/a through 1.14.0.
CVSS: MEDIUM (6.6) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56263 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Shots for Dribbble allows DOM-Based XSS.This issue affects GS Shots for Dribbble: from n/a through 1.2.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56262 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Coaches allows Stored XSS.This issue affects GS Coaches: from n/a through 1.1.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56261 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins Project Showcase allows Stored XSS.This issue affects Project Showcase: from n/a through 1.1.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56260 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in StorePlugin ShopElement allows Stored XSS.This issue affects ShopElement: from n/a through 2.0.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56259 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AyeCode - WP Business Directory Plugins GeoDirectory allows Stored XSS.This issue affects GeoDirectory: from n/a through 2.3.84.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|