U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. VulnerabilitiesSearch And Statistics

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
There are 253,571 matching records.
Displaying matches 81 through 100.
Vuln ID Summary CVSS Severity
CVE-2024-43980

Missing Authorization vulnerability in CozyThemes Fota WP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fota WP: from n/a through 1.4.1.

Published: November 01, 2024; 11:15:51 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43979

Missing Authorization vulnerability in CozyThemes Blockbooster allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blockbooster: from n/a through 1.0.10.

Published: November 01, 2024; 11:15:50 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43974

Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2.

Published: November 01, 2024; 11:15:50 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43973

Missing Authorization vulnerability in AyeCode Ltd GetPaid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GetPaid: from n/a through 2.8.11.

Published: November 01, 2024; 11:15:50 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43968

Broken Access Control vulnerability in Automattic Newspack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Newspack: from n/a through 3.8.6.

Published: November 01, 2024; 11:15:50 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43962

Missing Authorization vulnerability in LWS LWS Affiliation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LWS Affiliation: from n/a through 2.3.4.

Published: November 01, 2024; 11:15:50 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43956

Missing Authorization vulnerability in Caseproof, LLC Memberpress allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Memberpress: from n/a through 1.11.34.

Published: November 01, 2024; 11:15:49 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43937

Missing Authorization vulnerability in Themeum WP Crowdfunding allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Crowdfunding: from n/a through 2.1.10.

Published: November 01, 2024; 11:15:49 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43932

Missing Authorization vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.6.2.

Published: November 01, 2024; 11:15:49 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43929

Missing Authorization vulnerability in eyecix JobSearch allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JobSearch: from n/a through 2.5.4.

Published: November 01, 2024; 11:15:49 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43928

Missing Authorization vulnerability in eyecix JobSearch allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JobSearch: from n/a through 2.5.4.

Published: November 01, 2024; 11:15:49 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43925

Missing Authorization vulnerability in Envira Gallery Team Envira Photo Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Envira Photo Gallery: from n/a through 1.8.14.

Published: November 01, 2024; 11:15:48 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43923

Missing Authorization vulnerability in Arraytics Timetics allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Timetics: from n/a through 1.0.23.

Published: November 01, 2024; 11:15:48 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43919

Access Control vulnerability in YARPP YARPP allows . This issue affects YARPP: from n/a through 5.30.10.

Published: November 01, 2024; 11:15:48 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43355

Missing Authorization vulnerability in BearDev JoomSport allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JoomSport: from n/a through 5.3.0.

Published: November 01, 2024; 11:15:48 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43343

Missing Authorization vulnerability in Etoile Web Design Order Tracking allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Order Tracking: from n/a through 3.3.12.

Published: November 01, 2024; 11:15:48 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43341

Missing Authorization vulnerability in CozyThemes Hello Agency allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Hello Agency: from n/a through 1.0.5.

Published: November 01, 2024; 11:15:47 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43332

Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0.

Published: November 01, 2024; 11:15:47 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43323

Missing Authorization vulnerability in ReviewX allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviewX: from n/a through 1.6.28.

Published: November 01, 2024; 11:15:47 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)
CVE-2024-43314

Missing Authorization vulnerability in Gabe Livan Asset CleanUp: Page Speed Booster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Asset CleanUp: Page Speed Booster: from n/a through 1.3.9.3.

Published: November 01, 2024; 11:15:47 AM -0400 		V4.0:(not available)
 V3.x:(not available)
 V2.0:(not available)