Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-54256 |
Description: Missing Authorization vulnerability in Seerox Easy Blocks pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Easy Blocks pro: from n/a through 1.0.21.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54252 |
Description: Missing Authorization vulnerability in PINPOINT.WORLD Pinpoint Booking System allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pinpoint Booking System: from n/a through 2.9.9.5.2.
CVSS: MEDIUM (6.3) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54250 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Prodigy Commerce Prodigy Commerce allows DOM-Based XSS.This issue affects Prodigy Commerce: from n/a through 3.0.8.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54248 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Michael DUMONTET eewee admin custom allows Privilege Escalation.This issue affects eewee admin custom: from n/a through 1.8.2.4.
CVSS: HIGH (8.8) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54246 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 FAQs allows Stored XSS.This issue affects FAQs: from n/a through 1.0.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54245 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 Clients allows Stored XSS.This issue affects Clients: from n/a through 1.1.4.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54244 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 Easy Replace allows Stored XSS.This issue affects Easy Replace: from n/a through 1.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54243 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 Echoza allows Stored XSS.This issue affects Echoza: from n/a through 0.1.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54242 |
Description: Missing Authorization vulnerability in Appsbd Simple Notification allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple Notification: from n/a through 1.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|
|
CVE-2024-54241 |
Description: Missing Authorization vulnerability in Appsbd Elite Notification – Sales Popup, Social Proof, FOMO & WooCommerce Notification allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elite Notification – Sales Popup, Social Proof, FOMO & WooCommerce Notification: from 1.5 through n/a.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 14th, 2024 (6 months ago)
|