LoginPress | Custom Login Page Customizer Security Vulnerabilities

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: slsa-verifier, smarter-device-manager, flannel-cni-plugin, grpcurl, scorecard, dgraph, aactl, go-md2man, k3d, mage, protoc-gen-go-grpc, cni-plugins, ctop, sops, aws-flb-cloudwatch, gosu, aws-flb-kinesis, helm-push, metrics-server, prometheus-bind-exporter, petname,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: glab, external-dns, kubernetes-csi-external-attacher, osv-scanner, go-md2man, containerd, hubble-ui, gomplate, boring-registry, ctop, coredns, crossplane-provider-aws, kubernetes-ingress-defaultbackend, kubernetes, caddy, neuvector-scanner, kafka_exporter, k9s,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: kubernetes-csi-external-attacher, osv-scanner, containerd, gomplate, k8sgpt-operator, cluster-api-controller, crossplane-provider-aws, kubernetes-ingress-defaultbackend, neuvector-scanner, newrelic-nri-statsd, prometheus-node-exporter, bank-vaults, go,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: glab, external-dns, kubernetes-csi-external-attacher, osv-scanner, go-md2man, containerd, hubble-ui, gomplate, boring-registry, ctop, coredns, crossplane-provider-aws, kubernetes-ingress-defaultbackend, kubernetes, caddy, neuvector-scanner, kafka_exporter, k9s,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: kubernetes-csi-external-attacher, osv-scanner, containerd, gomplate, k8sgpt-operator, cluster-api-controller, crossplane-provider-aws, kubernetes-ingress-defaultbackend, neuvector-scanner, newrelic-nri-statsd, prometheus-node-exporter, bank-vaults, go,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: glab, external-dns, kubernetes-csi-external-attacher, osv-scanner, go-md2man, containerd, hubble-ui, gomplate, boring-registry, ctop, coredns, crossplane-provider-aws, kubernetes-ingress-defaultbackend, kubernetes, caddy, neuvector-scanner, kafka_exporter, k9s,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: slsa-verifier, smarter-device-manager, flannel-cni-plugin, grpcurl, scorecard, dgraph, aactl, go-md2man, k3d, mage, protoc-gen-go-grpc, cni-plugins, ctop, sops, aws-flb-cloudwatch, gosu, aws-flb-kinesis, helm-push, metrics-server, prometheus-bind-exporter, petname,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: slsa-verifier, smarter-device-manager, flannel-cni-plugin, grpcurl, scorecard, dgraph, aactl, go-md2man, k3d, mage, protoc-gen-go-grpc, cni-plugins, ctop, sops, aws-flb-cloudwatch, gosu, aws-flb-kinesis, helm-push, metrics-server, prometheus-bind-exporter, petname,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: slsa-verifier, smarter-device-manager, flannel-cni-plugin, grpcurl, scorecard, dgraph, aactl, go-md2man, k3d, mage, protoc-gen-go-grpc, cni-plugins, ctop, sops, aws-flb-cloudwatch, gosu, aws-flb-kinesis, helm-push, metrics-server, prometheus-bind-exporter, petname,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: glab, external-dns, kubernetes-csi-external-attacher, osv-scanner, go-md2man, containerd, hubble-ui, gomplate, boring-registry, ctop, coredns, crossplane-provider-aws, kubernetes-ingress-defaultbackend, kubernetes, caddy, neuvector-scanner, kafka_exporter, k9s,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: grype, cluster-autoscaler, temporal, flannel-cni-plugin, external-dns, kubernetes-csi-external-attacher, go-md2man, hubble-ui, gomplate, terraform, prometheus, k8sgpt-operator, cni-plugins, cluster-api-controller, ctop, aws-flb-cloudwatch, kwok, kubernetes, caddy, up,....

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: hello-world-golang, gobump, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, rekor, pulumi-language-dotnet, azure-aad-pod-identity-mic, http-echo, kube-webhook-certgen-fips,...

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: cni-plugins, cass-operator, sops, go-licenses, go-bindata, protoc-gen-go-grpc, vertical-pod-autoscaler, dgraph, prometheus-beat-exporter-fips, mage, kube-logging-logging-operator, ctop, aactl, docker-cli, local-path-provisioner, cass-operator-fips, kind,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, gobump, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, rekor, kubeflow-pipelines, pulumi-language-dotnet, azure-aad-pod-identity-mic, http-echo, gatekeeper,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: cni-plugins, cass-operator, sops, go-licenses, go-bindata, protoc-gen-go-grpc, vertical-pod-autoscaler, dgraph, prometheus-beat-exporter-fips, mage, kube-logging-logging-operator, ctop, aactl, docker-cli, local-path-provisioner, cass-operator-fips, kind,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, gobump, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, rekor, kubeflow-pipelines, pulumi-language-dotnet, azure-aad-pod-identity-mic, http-echo, gatekeeper,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: cni-plugins, cass-operator, sops, go-licenses, go-bindata, protoc-gen-go-grpc, vertical-pod-autoscaler, dgraph, prometheus-beat-exporter-fips, mage, kube-logging-logging-operator, ctop, aactl, docker-cli, local-path-provisioner, cass-operator-fips, kind,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: hello-world-golang, gobump, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, rekor, pulumi-language-dotnet, azure-aad-pod-identity-mic, http-echo, kube-webhook-certgen-fips,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: hello-world-golang, gobump, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, rekor, pulumi-language-dotnet, azure-aad-pod-identity-mic, http-echo, kube-webhook-certgen-fips,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: hello-world-golang, gobump, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, rekor, pulumi-language-dotnet, azure-aad-pod-identity-mic, http-echo, kube-webhook-certgen-fips,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: hello-world-golang, cni-plugins, chartmuseum, prometheus-mongodb-exporter-fips, go-bindata, wireguard-go, aws-efs-csi-driver-fips, cert-manager-fips, kubeflow-pipelines, azure-aad-pod-identity-mic, http-echo, gatekeeper, nfs-subdir-external-provisioner,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: cni-plugins, cass-operator, sops, go-licenses, go-bindata, protoc-gen-go-grpc, vertical-pod-autoscaler, dgraph, prometheus-beat-exporter-fips, mage, kube-logging-logging-operator, ctop, aactl, docker-cli, local-path-provisioner, cass-operator-fips, kind,...

Exploit for CVE-2024-27972

CVE-2024-27972-Poc CVE-2024-27972 WP Fusion Lite <=...

CVE-2024-3745

MSI Afterburner v4.6.6.16381 Beta 3 is vulnerable to an ACL Bypass vulnerability in the RTCore64.sys driver, which leads to triggering vulnerabilities like CVE-2024-1443 and CVE-2024-1460 from a low privileged...

CVE-2024-5088

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 3.10.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2024-5088 Happy Addons for Elementor <= 3.10.8 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 3.10.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2024-4432

The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 2.4.26 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated.....

CVE-2024-4432 Piotnet Addons For Elementor <= 2.4.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets

The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 2.4.26 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated.....

CVE-2024-4698

The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'show_line_text ' and 'slide_button_hover_animation' parameters in versions up to, and including, 10.1.1 due to insufficient input sanitization and output escaping. This makes it...

CVE-2024-4709

The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘subject’ parameter in versions up to, and including, 5.1.16 due to insufficient input sanitization and output escaping. This makes it....

CVE-2024-2772

The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via form settings in all versions up to, and including, 5.1.13 due to insufficient input sanitization and output escaping. This makes it...

CVE-2024-4709 Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.16 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘subject’ parameter in versions up to, and including, 5.1.16 due to insufficient input sanitization and output escaping. This makes it....