PT-2026-21424

The The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Insufficient Verification of Data Authenticity in all versions up to, and including, 6.4.7. This is due to the plugin decrypting and trusting...

PT-2025-33705 · WordPress · Wpc Smart Compare For Woocommerce

Name of the Vulnerable Software and Affected Versions: WPC Smart Compare for WooCommerce plugin for WordPress versions up to and including 6.4.7 Description: The WPC Smart Compare for WooCommerce plugin for WordPress is susceptible to Stored Cross-Site Scripting via DOM elements due to insufficie...

CVE-2024-54224

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in QuomodoSoft ElementsReady Addons for Elementor allows DOM-Based XSS.This issue affects ElementsReady Addons for Elementor: from n/a through 6.4.7...

PT-2024-36102 · Unknown · Elementsready Addons For Elementor

Name of the Vulnerable Software and Affected Versions: ElementsReady Addons for Elementor versions through 6.4.7 Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing DOM-Based XSS. This means that an...

CVE-2024-23666

A client-side enforcement of server-side security in Fortinet FortiAnalyzer-BigData at least version 7.4.0 and 7.2.0 through 7.2.6 and 7.0.1 through 7.0.6 and 6.4.5 through 6.4.7 and 6.2.5, FortiManager version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.4 and 7.0.0 through 7.0.11 and 6.4.0 through...

WordPress Complianz Premium Plugin <= 6.4.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Complianz Premium Type Plugin Vulnerable versions = 6.4.7 Fixed in 6.4.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-34030 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8ec92260cc85 Credits Rafie Muhammad...

CVE-2021-44169

A improper initialization in Fortinet FortiClient Windows version 6.0.10 and below, version 6.2.9 and below, version 6.4.7 and below, version 7.0.3 and below allows attacker to gain administrative privileges via placing a malicious executable inside the FortiClient installer's directory...

Aruba Networks ClearPass Policy Manager elevation of privilege vulnerability (CNVD-2017-26320)

Aruba Networks ClearPass Policy Manager CPPM is a BYOD Bring Your Own Device network access control policy enforcement platform from Aruba Networks. A security vulnerability exists in Aruba Networks CPPM versions prior to 6.4.7 and 6.5.x versions prior to 6.5.2. A remote attacker could exploit th...

Aruba Networks ClearPass Policy Manager Cross-Site Request Forgery Vulnerability

Aruba Networks ClearPass Policy Manager CPPM is a BYOD Bring Your Own Device network access control policy enforcement platform from Aruba Networks. A cross-site request forgery vulnerability exists in Aruba Networks CPPM versions prior to 6.4.7 and 6.5.x versions prior to 6.5.2. A remote attacke...