|
691
|
8.8 |
HIGH
Network
|
-
|
-
|
The Zox News - Professional WordPress News & Magazine Theme plugin for WordPress is vulnerable to unauthorized data modification. This vulnerability can lead to privilege escalation and denial of ser…
New
|
CWE-862
Missing Authorization
|
CVE-2024-13643
|
2025-02-11 17:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
692
|
- |
|
-
|
-
|
rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a l…
Update
|
-
|
CVE-2025-24898
|
2025-02-11 17:15 |
2025-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
693
|
9.8 |
CRITICAL
Network
-
|
-
|
The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.7. This is due to the plugin not properly validating a user's…
New
|
CWE-288
Authentication Bypass Using an Alternate Path or Channel
|
CVE-2025-0181
|
2025-02-11 16:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
694
|
9.8 |
CRITICAL
Network
-
|
-
|
The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be update…
New
|
CWE-269
Improper Privilege Management
|
CVE-2025-0180
|
2025-02-11 16:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
695
|
5.0 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the file bfd/libbfd.c of the component ld. The manipulation leads t…
New
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2025-1179
|
2025-02-11 16:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
696
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected is the function import_add of the file dayrui/Fcms/Control/Admin/Linkage.php. The manipulation leads …
New
|
CWE-20
CWE-502
Improper Input Validation
Deserialization of Untrusted Data
|
CVE-2025-1177
|
2025-02-11 15:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
697
|
5.0 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to h…
New
|
CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error')
Heap-based Buffer Overflow
|
CVE-2025-1176
|
2025-02-11 15:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
698
|
- |
|
-
|
-
|
A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. Affected by this issue is some unknown functionality of the file addtocart.php. The…
New
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-1172
|
2025-02-11 15:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
699
|
- |
|
-
|
-
|
A vulnerability classified as problematic was found in code-projects Real Estate Property Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /Admin/Customer…
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2025-1171
|
2025-02-11 15:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
700
|
- |
|
-
|
-
|
NetVision Information ISOinsight has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript code in the user's browser through phish…
New
|
CWE-79
Cross-site Scripting
|
CVE-2025-1145
|
2025-02-11 15:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
