CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-56024 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DuoGeek Custom Dashboard Widget allows Reflected XSS.This issue affects Custom Dashboard Widget: from n/a through 1.0.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56023 |
WordPress WP eCommerce Quickpay plugin <= 1.1.0 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Perfect Solution WP eCommerce Quickpay allows Reflected XSS.This issue affects WP eCommerce Quickpay: from n/a through 1.1.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56022 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WordPress Monsters Preloader by WordPress Monsters allows Reflected XSS.This issue affects Preloader by WordPress Monsters: from n/a through 1.2.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56021 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ibnuyahya Category Post Shortcode allows Stored XSS.This issue affects Category Post Shortcode: from n/a through 2.4.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56020 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mario Di Pasquale SvegliaT Buttons allows Stored XSS.This issue affects SvegliaT Buttons: from n/a through 1.3.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-56018 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Boston University (IS&T) BU Section Editing allows Reflected XSS.This issue affects BU Section Editing: from n/a through 0.9.9.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-43927 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Till Krüss Email Address Encoder allows Cross Site Request Forgery.This issue affects Email Address Encoder: from n/a through 1.0.23.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-39623 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro allows Authentication Bypass.This issue affects ListingPro: from n/a through 2.9.4.
CVSS: HIGH (8.8) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-38790 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Smartsupp Smartsupp – live chat, chatbots, AI and lead generation allows Cross Site Request Forgery.This issue affects Smartsupp – live chat, chatbots, AI and lead generation: from n/a through 3.6.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|
|
CVE-2024-38789 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Marco Milesi Telegram Bot & Channel allows Cross Site Request Forgery.This issue affects Telegram Bot & Channel: from n/a through 3.8.2.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
January 3rd, 2025 (6 months ago)
|