1831
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mohammad Arif Opor Ayam allows Reflected XSS.This issue affects Opor Ayam: from n/a throug…
|
CWE-79
Cross-site Scripting
|
CVE-2024-44053
|
2024-09-17 00:30 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1832
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Manu225 Flipping Cards allows Stored XSS.This issue affects Flipping Cards: from n/a throu…
|
CWE-79
Cross-site Scripting
|
CVE-2024-45460
|
2024-09-17 00:30 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1833
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PickPlugins Product Slider for WooCommerce allows Reflected XSS.This issue affects Product…
|
CWE-79
Cross-site Scripting
|
CVE-2024-45459
|
2024-09-17 00:30 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1834
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Happyforms allows Stored XSS.This issue affects Happyforms: from n/a through 1.26.0.
|
CWE-79
Cross-site Scripting
|
CVE-2024-44063
|
2024-09-17 00:30 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1835
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hiroaki Miyashita Custom Field Template allows Stored XSS.This issue affects Custom Field …
|
CWE-79
Cross-site Scripting
|
CVE-2024-44062
|
2024-09-17 00:30 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1836
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jennifer Hall Filmix allows Reflected XSS.This issue affects Filmix: from n/a through 1.1.
|
CWE-79
Cross-site Scripting
|
CVE-2024-44060
|
2024-09-17 00:30 |
2024-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1837
|
8.8 |
HIGH
Network
|
-
|
-
|
The Login with phone number plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.7.49. This is due to a lack of validation and missing capability check o…
|
CWE-269
Improper Privilege Management
|
CVE-2024-6482
|
2024-09-17 00:30 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1838
|
6.7 |
MEDIUM
Local
|
-
|
-
|
A potential vulnerability was reported in the BIOS update tool driver for some Desktop, Smart Edge, Smart Office, and ThinkStation products that could allow a local user with elevated privileges to e…
|
-
|
CVE-2023-25493
|
2024-09-17 00:15 |
2024-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1839
|
3.3 |
LOW
Local
|
lenovo
|
tab_m8_hd_tb8505f_firmware tab_m8_hd_tb8505fs_firmware tab_m8_hd_tb8505x_firmware tab_m8_hd_tb8505xs_firmware
|
An information disclosure vulnerability was reported in the Lenovo Tab M8 HD that could allow a local application to gather a non-resettable device identifier.
|
NVD-CWE-noinfo
|
CVE-2023-5081
|
2024-09-17 00:15 |
2024-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1840
|
7.8 |
HIGH
Local
|
lenovo
|
tab_m8_hd_tb8505f_firmware tab_m8_hd_tb8505fs_firmware tab_m8_hd_tb8505x_firmware tab_m8_hd_tb8505xs_firmware tab_m10_plus_gen_3_tb125fu_firmware tab_p11_pro_gen_2_tb132fu_firmware
|
A privilege escalation vulnerability was reported in some Lenovo tablet products that could allow local applications access to device identifiers and system commands.
|
NVD-CWE-noinfo
|
CVE-2023-5080
|
2024-09-17 00:15 |
2024-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|