Search Results (Refine Search)
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2024-0881 |
The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel WordPress plugin before 2.2.76 does not prevent password protected posts from being displayed in the result of some unauthenticated AJAX actions, allowing unauthenticated users to read such posts Published: April 11, 2024; 12:15:24 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32105 |
Cross-Site Request Forgery (CSRF) vulnerability in ELEXtensions ELEX WooCommerce Dynamic Pricing and Discounts.This issue affects ELEX WooCommerce Dynamic Pricing and Discounts: from n/a through 2.1.2. Published: April 11, 2024; 10:15:12 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2023-29483 |
eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in which the DNS name resolution algorithm would proceed, within the full time window, in order to wait for a valid packet. NOTE: dnspython 2.6.0 is unusable for a different reason that was addressed in 2.6.1. Published: April 11, 2024; 10:15:12 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32109 |
Cross-Site Request Forgery (CSRF) vulnerability in Julien Berthelot / MPEmbed.Com WP Matterport Shortcode.This issue affects WP Matterport Shortcode: from n/a through 2.1.8. Published: April 11, 2024; 9:15:56 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32108 |
Cross-Site Request Forgery (CSRF) vulnerability in Stephanie Leary Convert Post Types.This issue affects Convert Post Types: from n/a through 1.4. Published: April 11, 2024; 9:15:55 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32107 |
Cross-Site Request Forgery (CSRF) vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0. Published: April 11, 2024; 9:15:55 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32106 |
Cross-Site Request Forgery (CSRF) vulnerability in WP Compress WP Compress – Image Optimizer [All-In-One].This issue affects WP Compress – Image Optimizer [All-In-One]: from n/a through 6.10.35. Published: April 11, 2024; 9:15:55 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32083 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Varun Kumar Easy Logo allows Stored XSS.This issue affects Easy Logo: from n/a through 1.9.3. Published: April 11, 2024; 9:15:55 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31937 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visitor Analytics TWIPLA (Visitor Analytics IO) allows Stored XSS.This issue affects TWIPLA (Visitor Analytics IO): from n/a through 1.2.0. Published: April 11, 2024; 9:15:55 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31936 |
Cross-Site Request Forgery (CSRF) vulnerability in AyeCode Ltd UsersWP.This issue affects UsersWP: from n/a before 1.2.6. Published: April 11, 2024; 9:15:55 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31935 |
Cross-Site Request Forgery (CSRF) vulnerability in BracketSpace Simple Post Notes.This issue affects Simple Post Notes: from n/a through 1.7.6. Published: April 11, 2024; 9:15:54 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31934 |
Cross-Site Request Forgery (CSRF) vulnerability in Link Whisper Link Whisper Free.This issue affects Link Whisper Free: from n/a through 0.6.9. Published: April 11, 2024; 9:15:54 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31932 |
Cross-Site Request Forgery (CSRF) vulnerability in CreativeThemes Blocksy Companion.This issue affects Blocksy Companion: from n/a through 2.0.28. Published: April 11, 2024; 9:15:54 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31931 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Save as Image plugin by Pdfcrowd allows Stored XSS.This issue affects Save as Image plugin by Pdfcrowd: from n/a through 3.2.1 . Published: April 11, 2024; 9:15:54 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31930 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Stored XSS.This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 3.2.1 . Published: April 11, 2024; 9:15:54 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31929 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Polevaultweb Intagrate Lite allows Stored XSS.This issue affects Intagrate Lite: from n/a through 1.3.7. Published: April 11, 2024; 9:15:53 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31928 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Darko Top Bar allows Stored XSS.This issue affects Top Bar: from n/a through 3.0.5. Published: April 11, 2024; 9:15:53 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31927 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aminur Islam WP Login and Logout Redirect allows Stored XSS.This issue affects WP Login and Logout Redirect: from n/a through 1.2. Published: April 11, 2024; 9:15:53 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31926 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BracketSpace Advanced Cron Manager – debug & control allows Stored XSS.This issue affects Advanced Cron Manager – debug & control: from n/a through 2.5.2. Published: April 11, 2024; 9:15:53 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31925 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FAKTOR VIER F4 Improvements allows Stored XSS.This issue affects F4 Improvements: from n/a through 1.8.0. Published: April 11, 2024; 9:15:53 AM -0400 |
V3.x:(not available) V2.0:(not available) |