|
1
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file templatedelete.php. The manipu…
New
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0946
|
2025-02-2 01:15 |
2025-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file typedelete.php. The manipulation of the argument id …
New
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0945
|
2025-02-2 00:15 |
2025-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file customerview.php. The manipulation of …
New
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0944
|
2025-02-1 22:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4
|
5.4 |
MEDIUM
Network
|
-
|
-
|
The WooCommerce Support Ticket System plugin for WordPress is vulnerable to unauthorized access and loss of data due to missing capability checks on the 'ajax_delete_message', 'ajax_get_customers_par…
New
|
CWE-862
Missing Authorization
|
CVE-2024-13775
|
2025-02-1 22:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'better_messages_live_…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-13612
|
2025-02-1 22:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file deldoc.php. The manipulation of the ar…
New
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0943
|
2025-02-1 20:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
7
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.6 v…
New
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-13429
|
2025-02-1 17:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
8
|
5.3 |
MEDIUM
Network
-
|
-
|
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.6 v…
New
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-13428
|
2025-02-1 17:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
9
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.6 v…
New
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-13425
|
2025-02-1 17:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
10
|
5.3 |
MEDIUM
Network
-
|
-
|
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.6 v…
New
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-13372
|
2025-02-1 17:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
