WordPress plugin JetEngine has a cross-site scripting vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. WordPress...

CVE-2024-43302

Missing Authorization vulnerability in Fonts Plugin Fonts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fonts: from n/a through 3.7.7...

PT-2023-23402 · Woocommerce · Stripe Payment Plugin For Woocommerce

Name of the Vulnerable Software and Affected Versions: Stripe Payment Plugin for WooCommerce versions up to, and including, 3.7.7 Description: The issue is related to authentication bypass due to insufficient verification of the user being supplied during a Stripe checkout through the plugin. Thi...

WordPress plugin Event Manager and Tickets Selling Plugin for WooCommerce 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...

AZL-10439 CVE-2022-2509 affecting package gnutls for versions less than 3.7.7-1

A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutlspkcs7verify function...