) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2024-4234 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sayful Islam Filterable Portfolio allows Stored XSS.This issue affects Filterable Portfolio: from n/a through 1.6.4. Published: April 26, 2024; 9:15:48 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33697 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rimes Gold CF7 File Download – File Download for CF7 allows Stored XSS.This issue affects CF7 File Download – File Download for CF7: from n/a through 2.0. Published: April 26, 2024; 9:15:48 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33696 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Broadstreet XPRESS WordPress Ad Widget allows Stored XSS.This issue affects WordPress Ad Widget: from n/a through 2.20.0. Published: April 26, 2024; 9:15:48 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33695 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeNcode Fan Page Widget by ThemeNcode allows Stored XSS.This issue affects Fan Page Widget by ThemeNcode: from n/a through 2.0. Published: April 26, 2024; 9:15:47 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33694 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Meks Meks ThemeForest Smart Widget allows Stored XSS.This issue affects Meks ThemeForest Smart Widget: from n/a through 1.5. Published: April 26, 2024; 9:15:47 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33693 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Meks Meks Smart Social Widget allows Stored XSS.This issue affects Meks Smart Social Widget: from n/a through 1.6.4. Published: April 26, 2024; 9:15:47 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33692 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Satrya Smart Recent Posts Widget allows Stored XSS.This issue affects Smart Recent Posts Widget: from n/a through 1.0.3. Published: April 26, 2024; 9:15:47 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33691 |
Cross-Site Request Forgery (CSRF) vulnerability in OptinMonster Popup Builder Team OptinMonster.This issue affects OptinMonster: from n/a through 2.15.3. Published: April 26, 2024; 9:15:47 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33690 |
Cross-Site Request Forgery (CSRF) vulnerability in Jegstudio Financio.This issue affects Financio: from n/a through 1.1.3. Published: April 26, 2024; 9:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33689 |
Cross-Site Request Forgery (CSRF) vulnerability in Tony Zeoli, Tony Hayes Radio Station.This issue affects Radio Station: from n/a through 2.5.7. Published: April 26, 2024; 9:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33688 |
Cross-Site Request Forgery (CSRF) vulnerability in Extend Themes Teluro.This issue affects Teluro: from n/a through 1.0.31. Published: April 26, 2024; 9:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2023-52646 |
In the Linux kernel, the following vulnerability has been resolved: aio: fix mremap after fork null-deref Commit e4a0d3e720e7 ("aio: Make it possible to remap aio ring") introduced a null-deref if mremap is called on an old aio mapping after fork as mm->ioctx_table will be set to NULL. [jmoyer@redhat.com: fix 80 column issue] Published: April 26, 2024; 9:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32822 |
Missing Authorization vulnerability in impleCode Reviews Plus.This issue affects Reviews Plus: from n/a through 1.3.4. Published: April 26, 2024; 8:15:07 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33683 |
Cross-Site Request Forgery (CSRF) vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3. Published: April 26, 2024; 7:15:47 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33682 |
Cross-Site Request Forgery (CSRF) vulnerability in Cookie Information A/S WP GDPR Compliance.This issue affects WP GDPR Compliance: from n/a through 2.0.23. Published: April 26, 2024; 7:15:47 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33680 |
Cross-Site Request Forgery (CSRF) vulnerability in MainWP MainWP Child Reports.This issue affects MainWP Child Reports: from n/a through 2.1.1. Published: April 26, 2024; 7:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33679 |
Cross-Site Request Forgery (CSRF) vulnerability in FameThemes FameTheme Demo Importer.This issue affects FameTheme Demo Importer: from n/a through 1.1.5. Published: April 26, 2024; 7:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33678 |
Cross-Site Request Forgery (CSRF) vulnerability in ClickCease ClickCease Click Fraud Protection.This issue affects ClickCease Click Fraud Protection: from n/a through 3.2.4. Published: April 26, 2024; 7:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-33677 |
Cross-Site Request Forgery (CSRF) vulnerability in Renzo Johnson Contact Form 7 Extension For Mailchimp.This issue affects Contact Form 7 Extension For Mailchimp: from n/a through 0.5.70. Published: April 26, 2024; 7:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32957 |
Missing Authorization vulnerability in Live Composer Team Page Builder: Live Composer.This issue affects Page Builder: Live Composer: from n/a through 1.5.38. Published: April 26, 2024; 7:15:46 AM -0400 |
V3.x:(not available) V2.0:(not available) |