All In One SEO – Best WordPress SEO Plugin – Easily Improve Your SEO Rankings Security Vulnerabilities

CVE-2024-4891 Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates <= 4.5.12 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tagName’ parameter in versions up to, and including, 4.5.12 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2024-3714 GiveWP – Donation Plugin and Fundraising Platform <= 3.10.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'give_form' shortcode when used with a legacy form in all versions up to, and including, 3.10.0 due to insufficient input sanitization and output escaping on...

CVE-2024-4374 DethemeKit For Elementor <= 2.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

The DethemeKit For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 2.1.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

carletonltd.com Cross Site Scripting vulnerability OBB-3928505

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

CVE-2024-4865

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 3.10.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2024-21626 vulnerabilities

Vulnerabilities for packages: buildkitd, kots, nvidia-device-plugin, wolfictl, runc, ingress-nginx-controller, syft, kubescape, trivy, telegraf, docker, k3s, k9s, nerdctl, skaffold, zot, skopeo, zarf, newrelic-infrastructure-agent, k3d, grype, datadog-agent, kubernetes, kaniko, ctop,...

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: go, dynamic-localpv-provisioner, grpcurl, falco, restic, gke-gcloud-auth-plugin, k3d, wireguard-go,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, oauth2-proxy, gitlab-pages, prometheus-adapter, thanos, dynamic-localpv-provisioner, terraform-provider-azurerm, coredns, gobuster, terraform-provider-aws, weaviate, cluster-autoscaler, stakater-reloader, scorecard, dex, sigstore-scaffolding,.....

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, tflint, karpenter, oauth2-proxy, kine, nuclei, kube-fluentd-operator, smarter-device-manager, crossplane-provider-azure, gitlab-pages, cloud-sql-proxy, syft, prometheus-adapter, docker-compose, buf, caddy, tekton-chains, thanos,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, tflint, karpenter, oauth2-proxy, kine, nuclei, kube-fluentd-operator, smarter-device-manager, crossplane-provider-azure, gitlab-pages, cloud-sql-proxy, syft, prometheus-adapter, docker-compose, buf, caddy, tekton-chains, thanos,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, karpenter, oauth2-proxy, tekton-chains, kubernetes-ingress-defaultbackend, ipfs, dynamic-localpv-provisioner, hcloud, terraform-provider-google, dataplaneapi, dagdotdev, falcoctl, nri-mysql, dex, aws-flb-kinesis, logstash-exporter,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, pombump, karpenter, oauth2-proxy, smarter-device-manager, crossplane-provider-azure, gitlab-pages, tekton-chains, prometheus-adapter, docker-compose, caddy, kubernetes-ingress-defaultbackend, ipfs, thanos, overmind, external-secrets-operator,.....

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, pombump, karpenter, oauth2-proxy, smarter-device-manager, crossplane-provider-azure, gitlab-pages, tekton-chains, prometheus-adapter, docker-compose, caddy, kubernetes-ingress-defaultbackend, ipfs, thanos, overmind, external-secrets-operator,.....

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, oras, ip-masq-agent, amass, go-bindata, smarter-device-manager, protoc-gen-go-grpc, gke-gcloud-auth-plugin, goreleaser, influx, cortex, aactl, slsa-verifier, dgraph, cilium-envoy, sbom-scorecard, gosu, wait-for-port, sops, go-md2man, gobuster,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: buildkitd, karpenter, oauth2-proxy, kube-fluentd-operator, crossplane-provider-azure, gitlab-pages, cloud-sql-proxy, prometheus-adapter, yq, thanos, external-secrets-operator, dynamic-localpv-provisioner, kubernetes-dashboard, coredns, gobuster, weaviate, containerd,.....

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: go, dynamic-localpv-provisioner, grpcurl, falco, restic, gke-gcloud-auth-plugin, k3d, wireguard-go,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, karpenter, oauth2-proxy, tekton-chains, kubernetes-ingress-defaultbackend, ipfs, dynamic-localpv-provisioner, hcloud, terraform-provider-google, dataplaneapi, dagdotdev, falcoctl, nri-mysql, dex, aws-flb-kinesis, logstash-exporter,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, pombump, karpenter, oauth2-proxy, smarter-device-manager, crossplane-provider-azure, gitlab-pages, tekton-chains, prometheus-adapter, docker-compose, caddy, kubernetes-ingress-defaultbackend, ipfs, thanos, overmind, external-secrets-operator,.....

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: buildkitd, karpenter, oauth2-proxy, kube-fluentd-operator, crossplane-provider-azure, gitlab-pages, cloud-sql-proxy, tekton-chains, prometheus-adapter, yq, caddy, kubernetes-ingress-defaultbackend, thanos, external-secrets-operator, dynamic-localpv-provisioner,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, oras, ip-masq-agent, amass, go-bindata, smarter-device-manager, protoc-gen-go-grpc, gke-gcloud-auth-plugin, goreleaser, influx, cortex, aactl, slsa-verifier, dgraph, cilium-envoy, sbom-scorecard, gosu, wait-for-port, sops, go-md2man, gobuster,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, oras, ip-masq-agent, amass, go-bindata, smarter-device-manager, protoc-gen-go-grpc, gke-gcloud-auth-plugin, goreleaser, influx, cortex, aactl, slsa-verifier, dgraph, cilium-envoy, sbom-scorecard, gosu, wait-for-port, sops, go-md2man, gobuster,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: flannel-cni-plugin, oras, ip-masq-agent, amass, go-bindata, smarter-device-manager, protoc-gen-go-grpc, gke-gcloud-auth-plugin, goreleaser, influx, cortex, aactl, slsa-verifier, dgraph, cilium-envoy, sbom-scorecard, gosu, wait-for-port, sops, go-md2man, gobuster,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: buildkitd, karpenter, oauth2-proxy, kube-fluentd-operator, crossplane-provider-azure, gitlab-pages, cloud-sql-proxy, tekton-chains, prometheus-adapter, yq, caddy, kubernetes-ingress-defaultbackend, thanos, external-secrets-operator, dynamic-localpv-provisioner,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: buildkitd, karpenter, oauth2-proxy, kube-fluentd-operator, crossplane-provider-azure, gitlab-pages, cloud-sql-proxy, prometheus-adapter, yq, thanos, external-secrets-operator, dynamic-localpv-provisioner, kubernetes-dashboard, coredns, gobuster, weaviate, containerd,.....

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, oauth2-proxy, gitlab-pages, prometheus-adapter, thanos, dynamic-localpv-provisioner, terraform-provider-azurerm, coredns, gobuster, terraform-provider-aws, weaviate, cluster-autoscaler, stakater-reloader, scorecard, dex, sigstore-scaffolding,.....

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, ko, kots, nvidia-device-plugin, oauth2-proxy, kubernetes-csi-external-attacher, gitlab-pages, kubernetes-csi-node-driver-registrar, envoy-ratelimit, prometheus-adapter, cortex, conftest, aws-efs-csi-driver, external-dns, aactl, kubescape,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: buildkitd, cert-manager, pombump, karpenter, oauth2-proxy, smarter-device-manager, crossplane-provider-azure, gitlab-pages, tekton-chains, prometheus-adapter, docker-compose, caddy, kubernetes-ingress-defaultbackend, ipfs, thanos, overmind, external-secrets-operator,.....

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: buildkitd, pombump, flannel-cni-plugin, tflint, kine, nuclei, nri-haproxy, smarter-device-manager, crossplane-provider-azure, cloud-sql-proxy, prometheus-adapter, yq, caddy, thanos, actions-runner-controller, cert-exporter, dynamic-localpv-provisioner,...

GHSA-XR7R-F8XQ-VFVV vulnerabilities

Vulnerabilities for packages: buildkitd, kots, nvidia-device-plugin, wolfictl, runc, ingress-nginx-controller, syft, kubescape, trivy, telegraf, docker, k3s, k9s, nerdctl, skaffold, zot, skopeo, zarf, newrelic-infrastructure-agent, k3d, grype, datadog-agent, kubernetes, kaniko, ctop,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: grafana-rollout-operator, helm, gostatsd, kubernetes-dashboard-metrics-scraper-fips, keda-fips, falcoctl, ghaudit, multus-cni-fips, smarter-device-manager, rclone, frp, kind, kubebuilder, logstash-exporter-fips, nvidia-device-plugin-fips, external-dns, stern,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: istio-cni, helm, kubernetes-dashboard-metrics-scraper-fips, keda-fips, falcoctl, smarter-device-manager, rclone, frp, istio-pilot-discovery, kargo, terraform-fips, logstash-exporter-fips, nvidia-device-plugin-fips, keda, hugo-extended, external-dns, terragrunt,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: helm, kubernetes-dashboard-metrics-scraper-fips, keda-fips, smarter-device-manager, kind, kubebuilder, terraform-fips, logstash-exporter-fips, nvidia-device-plugin-fips, keda, external-dns, regclient, nri-mysql, prometheus-redis-exporter, kube-rbac-proxy-fips,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: helm, kubernetes-dashboard-metrics-scraper-fips, keda-fips, smarter-device-manager, kind, kubebuilder, terraform-fips, logstash-exporter-fips, nvidia-device-plugin-fips, keda, external-dns, regclient, nri-mysql, prometheus-redis-exporter, kube-rbac-proxy-fips,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: helm, kubernetes-dashboard-metrics-scraper-fips, keda-fips, smarter-device-manager, kind, kubebuilder, terraform-fips, logstash-exporter-fips, nvidia-device-plugin-fips, keda, external-dns, regclient, nri-mysql, prometheus-redis-exporter, kube-rbac-proxy-fips,...

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: go, falco, restic, wireguard-go, hey, dynamic-localpv-provisioner-fips, gke-gcloud-auth-plugin, grpcurl, kube-state-metrics, kyverno, seldon-core-operator, dynamic-localpv-provisioner, eks-distro-coredns, k3d,...

CVE-2022-41723 vulnerabilities

Vulnerabilities for packages: go, falco, restic, wireguard-go, hey, dynamic-localpv-provisioner-fips, gke-gcloud-auth-plugin, grpcurl, kube-state-metrics, kyverno, seldon-core-operator, dynamic-localpv-provisioner, eks-distro-coredns, k3d,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: kubernetes-csi-node-driver-registrar, kubevela, wireguard-go, istio-cni, thanos-operator, helm, caddy, kubernetes-dashboard, prometheus-stackdriver-exporter, nvidia-device-plugin, falcoctl, up, vault-k8s, frp, crossplane-provider-aws, istio-pilot-discovery, kind, zot,....

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: kubernetes-csi-node-driver-registrar, kubevela, wireguard-go, helm, prometheus-stackdriver-exporter, cilium-envoy, nvidia-device-plugin, tomcat, up, frp, cert-manager, kind, dotnet, gitlab-shell, kiam, keda, atlantis-fips, external-dns, grpcurl, falcoctl-fips,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: prometheus-stackdriver-exporter, cilium-envoy, smarter-device-manager, kind, ctop, go-md2man, nsc, cass-operator, sops, scorecard, kube-logging-logging-operator, grpcurl, bank-vaults-fips, kyverno-policy-reporter-ui, smarter-device-manager-fips, protoc-gen-go-grpc,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: helm, kubernetes-dashboard-metrics-scraper-fips, keda-fips, smarter-device-manager, kind, kubebuilder, terraform-fips, logstash-exporter-fips, nvidia-device-plugin-fips, keda, external-dns, regclient, nri-mysql, prometheus-redis-exporter, kube-rbac-proxy-fips,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: helm, kubernetes-dashboard-metrics-scraper-fips, keda-fips, smarter-device-manager, kind, kubebuilder, terraform-fips, logstash-exporter-fips, nvidia-device-plugin-fips, keda, external-dns, regclient, nri-mysql, prometheus-redis-exporter, kube-rbac-proxy-fips,...