331
|
8.1 |
HIGH
Network
|
micropython
|
micropython
|
A vulnerability was found in MicroPython 1.22.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file py/objarray.c. The manipulation leads to use …
Update
|
CWE-416
Use After Free
|
CVE-2024-8947
|
2024-09-24 22:17 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
332
|
7.5 |
HIGH
Network
micropython
|
micropython
|
A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affected is the function mp_vfs_umount of the file extmod/vfs.c of the component VFS Unmount Handler. The manipula…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-8946
|
2024-09-24 22:11 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
333
|
7.8 |
HIGH
Local
|
microsoft
|
visio office 365_apps office_long_term_servicing_channel
|
Microsoft Office Visio Remote Code Execution Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-38016
|
2024-09-24 20:11 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
334
|
5.3 |
MEDIUM
Network
-
|
-
|
The BA Book Everything plugin for WordPress is vulnerable to arbitrary password reset in all versions up to, and including, 1.6.20. This is due to the reset_user_password() function not verifying a u…
New
|
-
|
CVE-2024-8794
|
2024-09-24 12:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
335
|
9.8 |
CRITICAL
Network
-
|
-
|
The Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.8.1.14. Thi…
New
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-8791
|
2024-09-24 12:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
336
|
- |
|
-
|
-
|
The WooEvents - Calendar and Event Booking plugin for WordPress is vulnerable to arbitrary file overwrite due to insufficient file path validation in the inc/barcode.php file in all versions up to, a…
New
|
CWE-22
Path Traversal
|
CVE-2024-8671
|
2024-09-24 12:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
337
|
5.4 |
MEDIUM
Network
|
-
|
-
|
The Popup, Optin Form & Email Newsletters for Mailchimp, HubSpot, AWeber – MailOptin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'post-meta' shortcode in all ve…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-8628
|
2024-09-24 12:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
338
|
9.9 |
CRITICAL
Network
|
-
|
-
|
The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to SQL Injection via the 'meta_key' attribute of the 'mdf_select_title' shortcode in all versions up to, and including, 1…
New
|
CWE-89
SQL Injection
|
CVE-2024-8624
|
2024-09-24 12:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
339
|
7.3 |
HIGH
Network
-
|
-
|
The The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.3.3.3. This is due to the software allowing …
New
|
CWE-94
Code Injection
|
CVE-2024-8623
|
2024-09-24 12:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
340
|
- |
|
-
|
-
|
The Easy Digital Downloads – Simple eCommerce for Selling Digital Files plugin for WordPress is vulnerable to deserialization of untrusted input via the 'upload[file]' parameter in versions up to, an…
New
|
-
|
CVE-2022-2439
|
2024-09-24 12:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|