WordPress Exit Notifier Plugin <= 1.9.1 is vulnerable to Cross Site Scripting (XSS)

Software Exit Notifier Type Plugin Vulnerable versions = 1.9.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8730 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f179ddd5b3e3 Credits vgo0 Required privileg...

WordPress Roles & Capabilities Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS)

Software Roles & Capabilities Type Plugin Vulnerable versions = 1.1.9 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8732 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID dc79088c77ac Credits vgo0 Required...

WordPress MStore API Plugin <= 4.15.3 is vulnerable to Arbitrary File Upload

Software MStore API Type Plugin Vulnerable versions = 4.15.3 Fixed in 4.15.4 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-8242 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 5f5d39cca07a Credits stealthcopter Required privilege...

WordPress YITH Custom Login Plugin <= 1.7.3 is vulnerable to Cross Site Scripting (XSS)

Software YITH Custom Login Type Plugin Vulnerable versions = 1.7.3 Fixed in 1.7.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8665 Patch priority Medium CVSS severity Medium 7.1 Developer YITH PSID 91c2ea88e903 Credits vgo0 Required privilege...

WordPress WP Simple Booking Calendar Plugin <= 2.0.10 is vulnerable to Cross Site Scripting (XSS)

Software WP Simple Booking Calendar Type Plugin Vulnerable versions = 2.0.10 Fixed in 2.0.11 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8663 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 00e7be38a235 Credits vgo0...

WordPress NinjaTeam Header Footer Custom Code Plugin < 1.2 is vulnerable to Cross Site Scripting (XSS)

Software NinjaTeam Header Footer Custom Code Type Plugin Vulnerable versions 1.2 Fixed in 1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6493 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 618713328f1e Credits Takshal...

WordPress CM Pop-Up banners Plugin < 1.7.3 is vulnerable to Cross Site Scripting (XSS)

Software CM Pop-Up banners Type Plugin Vulnerable versions 1.7.3 Fixed in 1.7.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5799 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 747794d443c6 Credits Eunho Kim Required...

WordPress WP Meta SEO Plugin <= 4.5.13 is vulnerable to Cross Site Scripting (XSS)

Software WP Meta SEO Type Plugin Vulnerable versions = 4.5.13 Fixed in 4.5.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-45455 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 3b8514759b32 Credits Robert DeVore Required privilege...

WordPress Spiffy Calendar Plugin <= 4.9.13 is vulnerable to Cross Site Scripting (XSS)

Software Spiffy Calendar Type Plugin Vulnerable versions = 4.9.13 Fixed in 4.9.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-45458 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 6044522ff419 Credits LVT-tholv2k Required privilege...

WordPress WP Meta SEO Plugin <= 4.5.13 is vulnerable to Cross Site Scripting (XSS)

Software WP Meta SEO Type Plugin Vulnerable versions = 4.5.13 Fixed in 4.5.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-45456 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 753a33ee6300 Credits Robert DeVore Required privilege...

WordPress Flipping Cards Plugin <= 1.30 is vulnerable to Cross Site Scripting (XSS)

Software Flipping Cards Type Plugin Vulnerable versions = 1.30 Fixed in 1.31 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-45460 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a59a35b1803e Credits Jorge Diaz ddiax Required privilege...

WordPress WordPress Tag Cloud Plugin – Tag Groups Plugin <= 2.0.3 is vulnerable to Sensitive Data Exposure

Software WordPress Tag Cloud Plugin – Tag Groups Type Plugin Vulnerable versions = 2.0.3 Fixed in 2.0.4 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-43237 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID d69c3848e4ee Credits Pen...

WordPress WPvivid Backup and Migration Plugin < 0.9.106 is vulnerable to Sensitive Data Exposure

Software WPvivid Backup and Migration Type Plugin Vulnerable versions 0.9.106 Fixed in 0.9.106 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-7315 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID d872d427e182 Credits Dmitrii...

WordPress Product Slider for WooCommerce Plugin <= 1.13.50 is vulnerable to Cross Site Scripting (XSS)

Software Product Slider for WooCommerce Type Plugin Vulnerable versions = 1.13.50 Fixed in 1.13.51 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-45459 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID bcb7dd048b9e Credits Le Ngoc Anh...

WordPress Envira Photo Gallery Plugin < 1.8.15 is vulnerable to Cross Site Scripting (XSS)

Software Envira Photo Gallery Type Plugin Vulnerable versions 1.8.15 Fixed in 1.8.15 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3899 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 91d28b966c51 Credits Dmitrii Ignatyev...

WordPress WP Delicious Plugin <= 1.6.9 is vulnerable to Arbitrary File Download

Software WP Delicious Type Plugin Vulnerable versions = 1.6.9 Fixed in 1.7.0 OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Download CVE CVE-2024-7626 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 044013a60ca3 Credits Connor Billings Required...

WordPress Flash & HTML5 Video Plugin <= 2.5.32 is vulnerable to Broken Access Control

Software Flash & HTML5 Video Type Plugin Vulnerable versions = 2.5.32 Fixed in 2.5.33 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-7727 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID b5ae27e206ad Credits Lucio Sá Required...

WordPress GS Logo Slider Plugin < 3.6.9 is vulnerable to Cross Site Scripting (XSS)

Software GS Logo Slider Type Plugin Vulnerable versions 3.6.9 Fixed in 3.6.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-7716 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7ab960e7c2f9 Credits Krugov Artyom Required...

WordPress WooCommerce Photo Reviews - Review Reminders - Review for Discounts Plugin <= 1.3.13.2 is vulnerable to Broken Authentication

Software WooCommerce Photo Reviews - Review Reminders - Review for Discounts Type Plugin Vulnerable versions = 1.3.13.2 Fixed in 1.3.14 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-8277 Patch priority High CVSS severity High 9.8...

PT-2024-18647 · Cisco · Cisco Ios Xr

Name of the Vulnerable Software and Affected Versions: Cisco IOS XR Software for various Cisco Network Convergence System NCS platforms affected versions not specified Description: A vulnerability in the handling of specific Ethernet frames could allow an unauthenticated, adjacent attacker to cau...