CVE-2024-52447 WordPress Contact Page With Google Map plugin <= 1.6.1 - Arbitrary File Deletion vulnerability

Path Traversal: '.../...//' vulnerability in corporatezen222 Contact Page With Google Map contact-page-with-google-map allows Path Traversal.This issue affects Contact Page With Google Map: from n/a through = 1.6.1...

PT-2024-35287 · Unknown · Corporate Zen Contact Page With Google Map

Name of the Vulnerable Software and Affected Versions: Corporate Zen Contact Page With Google Map versions 1.6.1 and earlier Description: The issue is related to a Path Traversal vulnerability, specifically a '.../...//' vulnerability, which affects the Corporate Zen Contact Page With Google Map...

AZL-53834 CVE-2024-53058 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data In case the non-paged data of a SKB carries protocol header and protocol payload to be transmitted on a certain platform that the DMA AXI address width is...

AZL-53942 CVE-2024-53058 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data In case the non-paged data of a SKB carries protocol header and protocol payload to be transmitted on a certain platform that the DMA AXI address width is...

CVE-2024-53058 net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data In case the non-paged data of a SKB carries protocol header and protocol payload to be transmitted on a certain platform that the DMA AXI address width is...

CVE-2024-51920

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pierre Jégo Map Store Locator map-store-location allows DOM-Based XSS.This issue affects Map Store Locator: from n/a through = 1.2.1...

CVE-2024-51844 WordPress Location Click Map plugin <= 1.0 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kiran Patil Location Click Map allows Stored XSS.This issue affects Location Click Map: from n/a through 1.0...

CVE-2024-51844 WordPress Location Click Map plugin <= 1.0 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kiran Patil Location Click Map location-click-map allows Stored XSS.This issue affects Location Click Map: from n/a through = 1.0...

CVE-2024-51844

CVE-2024-51844 refers to a Stored XSS vulnerability in the WordPress plugin Location Click Map by Kiran Patil. Affected: Location Click Map versions from n/a through 1.0. Root cause: improper neutralization of input during web page generation. Impact: Stored XSS that could affect site visitors; C...

CVE-2024-51920

CVE-2024-51920 affects Map Store Locator (WordPress plugin) versions 1.2.1 and earlier. Root cause: improper input neutralization during web page generation, enabling DOM-Based XSS. Impact: DOM-based cross-site scripting as described; no exploitation details provided in the sources. Remediation: ...

CVE-2024-51920 WordPress Map Store Locator plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pierre Jégo Map Store Locator map-store-location allows DOM-Based XSS.This issue affects Map Store Locator: from n/a through = 1.2.1...

CVE-2024-51937 WordPress IA Map Analytics Basic plugin <= 20170413 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bnisia IA Map Analytics Basic ia-map-analytics-basic allows DOM-Based XSS.This issue affects IA Map Analytics Basic: from n/a through = 20170413...

CVE-2024-51937 WordPress IA Map Analytics Basic plugin <= 20170413 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Information Analytics IA Map Analytics Basic allows DOM-Based XSS.This issue affects IA Map Analytics Basic: from n/a through 20170413...

CVE-2024-51937

CVE-2024-51937: WordPress WordPress plugin IA Map Analytics Basic (affected versions up to 20170413) is reported to have a DOM-based cross-site scripting (XSS) vulnerability due to improper input neutralization during page generation. The entry specifies Cross-site Scripting as the vulnerability ...

PT-2024-35052 · Unknown · Jdev Map Store Locator

Name of the Vulnerable Software and Affected Versions: JDev Map Store Locator versions 1.2.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an attacker ca...

WordPress plugin IA Map Analytics Basic 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

PT-2024-34972 · Unknown · Kiran Patil Location Click Map

Name of the Vulnerable Software and Affected Versions: Kiran Patil Location Click Map versions n/a through 1.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS in Kiran Patil Location...

WordPress plugin Map Store Locator 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

The vulnerability of the set_ap_map_config() function in the mainfunction.cgi script of the DrayTek Vigor 3900, Vigor 2960, and Vigor 300B router microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the setapmapconfig function in the mainfunction.cgi script of the DrayTek Vigor 3900, Vigor 2960, and Vigor 300B routers relates to the failure to eliminate the and & elements used in the operating system’s command when processing the action parameter. Exploiting this...

Vulnerability of components of Linux operating system’s kernel-based net/rds, allowing a hacker to cause a service failure

The vulnerability of the net/rds components of the Linux operating system’s kernel is related to the assignment of the NULL pointer in the rdsrdmamap function. Exploiting this vulnerability can allow an attacker to cause a service failure...