WPcalc – Create Any Online Calculators Security Vulnerabilities and Issues — Page 18 of WPcalc – Create Any Online Calculators CVE List

osv

Malicious code in w-a-t-c-h-scream-6-online-on-streamings-4k-at-home (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:19 PM

osv

Malicious code in w-a-t-c-h-scream-6-online-free-is-on-streaming-on-home (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:19 PM

osv

Malicious code in w-a-t-c-h-john-wick-4-online-on-streamings-4k-at-home (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:19 PM

osv

Malicious code in w-a-t-c-h-creed-3-online-free-is-on-streaming-on-home (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:19 PM

osv

Malicious code in w-a-t-c-h-65-online-free-is-on-streaming-on-home (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:19 PM

osv

Malicious code in ver-john-wick-capitulo-4-2023-online-gratis-en-espanol (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:18 PM

nvd

CVE-2024-6302

Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower, allowing a local user to redact any message from users on the same server, given that they are able to send redaction...

8.1CVSS

0.0004EPSS

2024-06-25 01:15 PM

4

nvd

CVE-2024-6303

Missing authorization in Client-Server API in Conduit <=0.7.0, allowing for any alias to be removed and added to another room, which can be used for privilege escalation by moving the #admins alias to a room which they control, allowing them to run commands resetting passwords, siging json with....

9.9CVSS

0.0004EPSS

2024-06-25 01:15 PM

10

cve

CVE-2024-6303

Missing authorization in Client-Server API in Conduit <=0.7.0, allowing for any alias to be removed and added to another room, which can be used for privilege escalation by moving the #admins alias to a room which they control, allowing them to run commands resetting passwords, siging json with....

9.9CVSS

9.7AI Score

0.0004EPSS

2024-06-25 01:15 PM

20

cve

CVE-2024-6301

Lack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most...

5.3CVSS

5.3AI Score

0.0004EPSS

2024-06-25 01:15 PM

18

nvd

CVE-2024-6301

Lack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most...

5.3CVSS

0.0004EPSS

2024-06-25 01:15 PM

6

cve

CVE-2024-6302

Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower, allowing a local user to redact any message from users on the same server, given that they are able to send redaction...

8.1CVSS

8AI Score

0.0004EPSS

2024-06-25 01:15 PM

17

osv

Malicious code in to-watch-avatar-2-the-way-of-water-full-online-stream04 (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:04 PM

1

osv

Malicious code in suparhit-movie-watching-john-wick-chapter-4-fullmovies-online-at-home01 (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:02 PM

osv

Malicious code in suparhit-movie-watching-john-wick-chapter-4-fullmovies-online-at-home (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:02 PM

cvelist

CVE-2024-6301 Origin Validation Error in Conduit

Lack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most...

5.3CVSS

0.0004EPSS

2024-06-25 01:02 PM

5

vulnrichment

CVE-2024-6301 Origin Validation Error in Conduit

Lack of validation of origin in federation API in Conduit, allowing any remote server to impersonate any user from any server in most...

5.3CVSS

7AI Score

0.0004EPSS

2024-06-25 01:02 PM

3

cvelist

CVE-2024-6302 Improper Handling of Insufficient Permissions or Privileges in Conduit

Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower, allowing a local user to redact any message from users on the same server, given that they are able to send redaction...

8.1CVSS

0.0004EPSS

2024-06-25 01:02 PM

4

vulnrichment

CVE-2024-6302 Improper Handling of Insufficient Permissions or Privileges in Conduit

Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower, allowing a local user to redact any message from users on the same server, given that they are able to send redaction...

8.1CVSS

7AI Score

0.0004EPSS

2024-06-25 01:02 PM

1

osv

Malicious code in stream-watch-creed-3-full-movies-hd-online-at-home-free-4k (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:02 PM

osv

Malicious code in stream-tu-jhoothi-main-makkar-on-fullmovies-online-at-home (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:02 PM

1

cvelist

CVE-2024-6303 Missing Authorization in Conduit

Missing authorization in Client-Server API in Conduit <=0.7.0, allowing for any alias to be removed and added to another room, which can be used for privilege escalation by moving the #admins alias to a room which they control, allowing them to run commands resetting passwords, siging json with....

9.9CVSS

0.0004EPSS

2024-06-25 01:02 PM

5

vulnrichment

CVE-2024-6303 Missing Authorization in Conduit

Missing authorization in Client-Server API in Conduit <=0.7.0, allowing for any alias to be removed and added to another room, which can be used for privilege escalation by moving the #admins alias to a room which they control, allowing them to run commands resetting passwords, siging json with....

9.9CVSS

7.6AI Score

0.0004EPSS

2024-06-25 01:02 PM

4

osv

Malicious code in shazam-fury-of-the-gods-watching-full-online-free-on-streaming-at-index-main (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:00 PM

osv

Malicious code in shazam-fury-of-the-gods-2023-full-online-free-on-streaming-at-index-main (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:00 PM

osv

Malicious code in scream-6-2023-online-on-fullmovies-free-at-homes4ks (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 01:00 PM

openbugbounty

neowheels.com Cross Site Scripting vulnerability OBB-3938541

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-25 12:56 PM

5

osv

Malicious code in pelisplus-ver-scream-6-2023-peliculas-online-hd (npm)

-= Per source details. Do not edit below this...

7.1AI Score

2024-06-25 12:55 PM

osv

Malicious code in online-creed-3-watch-fullmovies-free-hdshomes (npm)

-= Per source details. Do not edit below this...

7.1AI Score