Lucene search
K

67 matches found

OSV
OSV
added 2024/08/01 10:15 p.m.3 views

CVE-2024-39648

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Themewinter Eventin allows Stored XSS.This issue affects Eventin: from n/a through 4.0.5...

4.8CVSS5.8AI score0.00278EPSS
Exploits0References1
NVD
NVD
added 2024/08/01 10:15 p.m.21 views

CVE-2024-39648

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Themewinter Eventin allows Stored XSS.This issue affects Eventin: from n/a through 4.0.5...

5.9CVSS0.00278EPSS
Exploits0References1
OSV
OSV
added 2024/07/21 8:15 a.m.6 views

CVE-2024-37507

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Themewinter Eventin allows Stored XSS.This issue affects Eventin: from n/a through 3.3.57...

5.4CVSS5.8AI score0.00277EPSS
Exploits0References1
NVD
NVD
added 2024/07/21 8:15 a.m.31 views

CVE-2024-37507

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Themewinter Eventin allows Stored XSS.This issue affects Eventin: from n/a through 3.3.57...

6.5CVSS0.00277EPSS
Exploits0References1
CVE
CVE
added 2024/07/21 7:21 a.m.53 views

CVE-2024-37507

CVE-2024-37507 is a stored XSS in the Themewinter Eventin WordPress plugin, affecting Eventin versions up to 3.3.57. Root cause: Improper neutralization of input during web page generation. Exploitation requires authentication; impact is stored XSS on affected pages. Remediation: update to a fixe...

6.5CVSS6.5AI score0.00277EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/07/09 1:15 p.m.31 views

CVE-2024-37513

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Themewinter WPCafe allows Path Traversal.This issue affects WPCafe: from n/a through 2.2.27...

8.8CVSS0.00563EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 12:18 p.m.65 views

CVE-2024-37513

CVE-2024-37513: Affected software is Themewinter WPCafe (WordPress plugin) with versions from n/a up to 2.2.27. The root cause is improper limitation of a pathname to a restricted directory, enabling a Path Traversal vulnerability. This could potentially allow an attacker to access restricted fil...

8.8CVSS8.6AI score0.00563EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder