Lucene search
K

44 matches found

redhatcve
redhatcve
added 2026/01/06 5:7 p.m.4 views

CVE-2024-30461

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Tumult Inc Tumult Hype Animations allows DOM-Based XSS.This issue affects Tumult Hype Animations: from n/a through 1.9.11...

7.1CVSS6.4AI score0.00148EPSS
Exploits0References1
nvd
nvd
added 2026/01/05 5:15 p.m.4 views

CVE-2024-30461

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Tumult Inc Tumult Hype Animations allows DOM-Based XSS.This issue affects Tumult Hype Animations: from n/a through 1.9.11...

7.1CVSS0.00148EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/01/05 4:36 p.m.3 views

CVE-2024-30461 WordPress Tumult Hype Animations plugin <= 1.9.11 - CSRF to XSS vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Tumult Inc Tumult Hype Animations allows DOM-Based XSS.This issue affects Tumult Hype Animations: from n/a through 1.9.11...

7.1CVSS6AI score0.00148EPSS
Exploits0References1
euvd
euvd
added 2026/01/05 4:36 p.m.4 views

EUVD-2024-28382

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Tumult Inc Tumult Hype Animations allows DOM-Based XSS.This issue affects Tumult Hype Animations: from n/a through 1.9.11...

7.1CVSS7.4AI score0.00148EPSS
Exploits0References2
cvelist
cvelist
added 2026/01/05 4:36 p.m.27 views

CVE-2024-30461 WordPress Tumult Hype Animations plugin <= 1.9.11 - CSRF to XSS vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Tumult Inc Tumult Hype Animations allows DOM-Based XSS.This issue affects Tumult Hype Animations: from n/a through 1.9.11...

7.1CVSS0.00148EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/01/05 12:0 a.m.3 views

WordPress plugin Tumult Hype Animations 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...

7.1CVSS7.3AI score0.00148EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/01/05 12:0 a.m.9 views

PT-2026-1295

Name of the Vulnerable Software and Affected Versions Tumult Hype Animations versions through 1.9.11 Description A flaw exists in Tumult Hype Animations that allows for DOM-Based Cross-site Scripting XSS. This issue is due to improper neutralization of input during web page generation. The...

7.1CVSS6.2AI score0.00148EPSS
Exploits0References6
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-27834

Malicious code in bioql PyPI...

9.1CVSS6.4AI score0.00679EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-33172

Malicious code in bioql PyPI...

4.3CVSS8.6AI score0.003EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-28381

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00186EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 9:16 a.m.5 views

CVE-2024-30460

Cross-Site Request Forgery CSRF vulnerability in Tumult Inc Tumult Hype Animations.This issue affects Tumult Hype Animations: from n/a through 1.9.11...

4.3CVSS5.2AI score0.00186EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 8:20 a.m.8 views

CVE-2024-10543

The Tumult Hype Animations plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the hypeanimationsgetcontent function in all versions up to, and including, 1.9.14. This makes it possible for authenticated attackers, with Subscriber-level access an...

4.3CVSS6.5AI score0.003EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 2:11 a.m.10 views

CVE-2024-2890

Unrestricted Upload of File with Dangerous Type vulnerability in Tumult Inc. Tumult Hype Animations.This issue affects Tumult Hype Animations: from n/a through 1.9.12...

9.1CVSS5.2AI score0.00679EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 1:30 a.m.7 views

CVE-2024-11082

The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the hypeanimationspanel function in all versions up to, and including, 1.9.15. This makes it possible for authenticated attackers, with Author-level access and above, to...

9.9CVSS7.7AI score0.01163EPSS
Exploits0References1
osv
osv
added 2024/11/28 9:47 a.m.7 views

CVE-2024-11082 Tumult Hype Animations <= 1.9.15 - Authenticated (Author+) Arbitrary File Upload via hypeanimations_panel Function

The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the hypeanimationspanel function in all versions up to, and including, 1.9.15. This makes it possible for authenticated attackers, with Author-level access and above, to...

9.9CVSS7.9AI score0.01163EPSS
Exploits0References7
vulnrichment
vulnrichment
added 2024/11/28 9:47 a.m.16 views

CVE-2024-11082 Tumult Hype Animations <= 1.9.15 - Authenticated (Author+) Arbitrary File Upload via hypeanimations_panel Function

The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the hypeanimationspanel function in all versions up to, and including, 1.9.15. This makes it possible for authenticated attackers, with Author-level access and above, to...

9.9CVSS8AI score0.01163EPSS
Exploits0References5
cnnvd
cnnvd
added 2024/11/28 12:0 a.m.3 views

WordPress plugin Tumult Hype Animations 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in...

9.9CVSS8.6AI score0.01163EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2024/11/28 12:0 a.m.8 views

PT-2024-16745 · Tumult · Tumult Hype Animations

Name of the Vulnerable Software and Affected Versions: Tumult Hype Animations plugin for WordPress versions up to, and including, 1.9.15 Description: The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the hypeanimations...

9.9CVSS8.1AI score0.01163EPSS
Exploits0References12
patchstack
patchstack
added 2024/11/27 11:16 p.m.3 views

WordPress Tumult Hype Animations plugin <= 1.9.15 - Authenticated (Author+) Arbitrary File Upload via hypeanimations_panel Function vulnerability

Authenticated Author+ Arbitrary File Upload via hypeanimationspanel Function vulnerability discovered by vgo0 in WordPress Plugin Tumult Hype Animations versions = 1.9.15...

9.9CVSS7AI score0.01163EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2024/11/27 12:0 a.m.15 views

WordPress Tumult Hype Animations Plugin <= 1.9.15 is vulnerable to Arbitrary File Upload

Software Tumult Hype Animations Type Plugin Vulnerable versions = 1.9.15 Fixed in 1.9.16 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-11082 Patch priority Medium CVSS severity Medium 9.1 Developer Claim ownership PSID 259828d3532b Credits vgo0 Required privilege...

7.2AI score0.01163EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder