Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-54287 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Best Wp Developer Advanced Blog Post Block allows Stored XSS.This issue affects Advanced Blog Post Block: from n/a through 1.0.4.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54286 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sendsmaily LLC Smaily for WP allows Stored XSS.This issue affects Smaily for WP: from n/a through 3.1.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54282 |
Description: Deserialization of Untrusted Data vulnerability in Themeum WP Mega Menu allows Object Injection.This issue affects WP Mega Menu: from n/a through 1.4.2.
CVSS: HIGH (7.2) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54278 |
Description: Missing Authorization vulnerability in Plugin Devs News Ticker for Elementor allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects News Ticker for Elementor: from n/a through 2.1.3.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54277 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alireza aliniya Nias course allows DOM-Based XSS.This issue affects Nias course: from n/a through 1.2.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54276 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Felix Moira Poll Builder allows Stored XSS.This issue affects Poll Builder: from n/a through 1.3.5.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54275 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wibergs Web CSV to html allows Reflected XSS.This issue affects CSV to html: from n/a through 3.04.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54274 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Octrace Studio WordPress HelpDesk & Support Ticket System Plugin – Octrace Support allows Reflected XSS.This issue affects WordPress HelpDesk & Support Ticket System Plugin – Octrace Support: from n/a through 1.2.7.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54273 |
Description: Deserialization of Untrusted Data vulnerability in PickPlugins Mail Picker allows Object Injection.This issue affects Mail Picker: from n/a through 1.0.14.
CVSS: CRITICAL (9.8) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54272 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RadiusTheme Radius Blocks – WordPress Gutenberg Blocks allows Stored XSS.This issue affects Radius Blocks – WordPress Gutenberg Blocks: from n/a through 2.1.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|