U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Results (Refine Search)

Search Parameters:
There are 229,178 matching records.
Displaying matches 61 through 80.
Vuln ID Summary CVSS Severity
CVE-2024-29100

Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.1.4.

Published: March 28, 2024; 2:15:13 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-29090

Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.1.4.

Published: March 28, 2024; 2:15:12 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-28004

Missing Authorization vulnerability in ExtendThemes Colibri Page Builder.This issue affects Colibri Page Builder: from n/a through 1.0.248.

Published: March 28, 2024; 2:15:11 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-28003

Missing Authorization vulnerability in Megamenu Max Mega Menu.This issue affects Max Mega Menu: from n/a through 3.3.

Published: March 28, 2024; 2:15:10 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-23500

Server-Side Request Forgery (SSRF) vulnerability in Kadence WP Gutenberg Blocks by Kadence Blocks.This issue affects Gutenberg Blocks by Kadence Blocks: from n/a through 3.2.19.

Published: March 28, 2024; 2:15:10 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2023-39313

Server-Side Request Forgery (SSRF) vulnerability in ThemeFusion Avada.This issue affects Avada: from n/a through 7.11.1.

Published: March 28, 2024; 2:15:09 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2023-36679

Server-Side Request Forgery (SSRF) vulnerability in Brainstorm Force Spectra.This issue affects Spectra: from n/a through 2.6.6.

Published: March 28, 2024; 2:15:09 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2023-34370

Server-Side Request Forgery (SSRF) vulnerability in Brainstorm Force Starter Templates — Elementor, WordPress & Beaver Builder Templates, Brainstorm Force Premium Starter Templates.This issue affects Starter Templates — Elementor, WordPress & Beaver Builder Templates: from n/a through 3.2.4; Premium Starter Templates: from n/a through 3.2.4.

Published: March 28, 2024; 2:15:07 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30245

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in DecaLog.This issue affects DecaLog: from n/a through 3.9.0.

Published: March 28, 2024; 1:15:53 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30244

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.0.27.

Published: March 28, 2024; 1:15:53 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30243

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Tomas WordPress Tooltips.This issue affects WordPress Tooltips: from n/a before 9.4.5.

Published: March 28, 2024; 1:15:52 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30242

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in IT Path Solutions Contact Form to Any API.This issue affects Contact Form to Any API: from n/a through 1.1.8.

Published: March 28, 2024; 1:15:52 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30241

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid : from n/a through 5.7.1.

Published: March 28, 2024; 1:15:52 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30240

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Typps Calendarista.This issue affects Calendarista: from n/a through 15.5.7.

Published: March 28, 2024; 1:15:52 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30239

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.6.

Published: March 28, 2024; 1:15:52 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30237

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Supsystic Slider by Supsystic.This issue affects Slider by Supsystic: from n/a through 1.8.10.

Published: March 28, 2024; 1:15:51 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30236

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Contest Gallery.This issue affects Contest Gallery: from n/a through 21.3.4.

Published: March 28, 2024; 1:15:51 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30230

Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For WooCommerce.This issue affects PDF Invoices and Packing Slips For WooCommerce: from n/a through 1.3.7.

Published: March 28, 2024; 1:15:51 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30229

Deserialization of Untrusted Data vulnerability in GiveWP.This issue affects GiveWP: from n/a through 3.4.2.

Published: March 28, 2024; 1:15:51 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-30228

Deserialization of Untrusted Data vulnerability in Hercules Design Hercules Core.This issue affects Hercules Core : from n/a through 6.4.

Published: March 28, 2024; 1:15:51 AM -0400
V3.x:(not available)
V2.0:(not available)