2 matches found
WordPress Booking Ultra Pro Plugin <= 1.1.13 is vulnerable to Cross Site Scripting (XSS)
Software Booking Ultra Pro Type Plugin Vulnerable versions = 1.1.13 Fixed in 1.1.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-38676 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5502b7d4c80c Credits LVT-tholv2k Required privilege...
PT-2024-27170 · Linksys · Linksys Velop Wifi 5
Name of the Vulnerable Software and Affected Versions: Linksys Velop WiFi 5 WHW01v1 version 1.1.13.202617 Description: The issue is related to insecure permissions, allowing attackers to escalate privileges from Guest to root. Recommendations: For version 1.1.13.202617, at the moment, there is no...