Lucene search
K

6505 matches found

NVD
NVD
added 2024/06/19 4:15 a.m.28 views

CVE-2024-4663

The OSM Map Widget for Elementor plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.4CVSS0.00378EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/06/19 3:12 a.m.34 views

CVE-2024-4663 OSM Map Widget for Elementor <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter

The OSM Map Widget for Elementor plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.4CVSS0.00378EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/06/19 3:12 a.m.14 views

CVE-2024-4663 OSM Map Widget for Elementor <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter

The OSM Map Widget for Elementor plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.4CVSS6.4AI score0.00378EPSS
Exploits0References2
CVE
CVE
added 2024/06/19 3:12 a.m.56 views

CVE-2024-4663

The CVE-2024-4663 entry covers the OSM Map Widget for Elementor WordPress plugin. It affects all versions up to 1.2.2, with a Reflected Cross-Site Scripting vulnerability in the id parameter caused by insufficient input sanitization and output escaping. The issue can allow unauthenticated attacke...

6.4CVSS6.3AI score0.00378EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/06/19 1:12 a.m.2 views

kernel: hwmon: (coretemp) Fix out-of-bounds memory access

In the Linux kernel, the following vulnerability has been resolved: hwmon: coretemp Fix out-of-bounds memory access Fix a bug that pdata-cpumap is set before out-of-bounds check. The problem might be triggered on systems with more than 128 cores per package...

7.1CVSS6.7AI score0.00248EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/06/19 12:0 a.m.3 views

WordPress plugin OSM Map Widget for Elementor security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerabilit...

6.4CVSS6.2AI score0.00378EPSS
Exploits0References3
OSV
OSV
added 2024/06/18 8:15 p.m.1 views

DEBIAN-CVE-2024-36974

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: always validate TCATAPRIOATTRPRIOMAP If one TCATAPRIOATTRPRIOMAP attribute has been provided, taprioparsemqprioopt must validate it, or userspace can inject arbitrary data to the kernel, the second time...

7.8CVSS6.2AI score0.00281EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/18 6:0 p.m.3 views

WordPress OSM Map Widget for Elementor plugin < 1.3.0 - Authenticated Stored Cross-Site Scripting via id Parameter vulnerability

Authenticated Stored Cross-Site Scripting via id Parameter vulnerability discovered by stealthcopter in WordPress Plugin OSM Map Widget for Elementor versions 1.3.0...

6.4CVSS5.8AI score0.00378EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/18 12:0 a.m.13 views

WordPress OSM Map Widget for Elementor Plugin <= 1.2.2 is vulnerable to Cross Site Scripting (XSS)

Software OSM Map Widget for Elementor Type Plugin Vulnerable versions = 1.2.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4663 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4fcc595d31d1 Credits stealthcopter...

6.4CVSS5.8AI score0.00378EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/06/18 12:0 a.m.3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not validating TCATAPRIOATTRPRIOMAP...

7.8CVSS6.5AI score0.00281EPSS
Exploits0References4
OSV
OSV
added 2024/06/12 10:15 a.m.3 views

CVE-2023-44234

Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08...

4.3CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/06/12 10:15 a.m.31 views

CVE-2023-44234

Missing Authorization vulnerability in Bastianon Massimo WP GPX Map.This issue affects WP GPX Map: from n/a through 1.7.08...

4.3CVSS0.00277EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.4 views

WordPress plugin WP GPX Map security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS6.8AI score0.00277EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/12 12:0 a.m.5 views

PT-2024-13181 · WordPress · Wp Gpx Map

Name of the Vulnerable Software and Affected Versions: WP GPX Map versions 1.7.08 and earlier Description: A Missing Authorization issue has been identified. This issue affects the WP GPX Map plugin. Recommendations: For WP GPX Map versions 1.7.08 and earlier, update to a version that contains a...

4.3CVSS8.7AI score0.00277EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/06/09 1:4 p.m.10 views

CVE-2024-32779 WordPress Vision – Image Map Builder plugin <= 1.7.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Avirtum Vision Interactive.This issue affects Vision Interactive: from n/a through 1.7.1...

5.3CVSS6.9AI score0.00345EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/09 1:4 p.m.24 views

CVE-2024-32779 WordPress Vision – Image Map Builder plugin <= 1.7.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Avirtum Vision Interactive.This issue affects Vision Interactive: from n/a through 1.7.1...

5.3CVSS0.00345EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/06/05 10:5 a.m.3 views

kernel: hwmon: (coretemp) Fix out-of-bounds memory access

In the Linux kernel, the following vulnerability has been resolved: hwmon: coretemp Fix out-of-bounds memory access Fix a bug that pdata-cpumap is set before out-of-bounds check. The problem might be triggered on systems with more than 128 cores per package...

7.1CVSS6.7AI score0.00248EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/05 12:36 a.m.5 views

kernel: hwmon: (coretemp) Fix out-of-bounds memory access

In the Linux kernel, the following vulnerability has been resolved: hwmon: coretemp Fix out-of-bounds memory access Fix a bug that pdata-cpumap is set before out-of-bounds check. The problem might be triggered on systems with more than 128 cores per package...

7.1CVSS6.7AI score0.00248EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/05 12:36 a.m.8 views

kernel: usb: xhci: Add error handling in xhci_map_urb_for_dma

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Add error handling in xhcimapurbfordma The Linux kernel CVE team has assigned CVE-2024-26964 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024050130-CVE-2024-26964-54c8@gregkh/T...

5.5CVSS6.8AI score0.00225EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/06/04 1:8 p.m.4 views

SUSE CVE-2020-25017

Envoy through 1.15.0 only considers the first value when multiple header values are present for some HTTP headers. Envoy's setCopy header map API does not replace all existing occurences of a non-inline header...

8.3CVSS8.2AI score0.01317EPSS
Exploits1References3
Rows per page
Query Builder