|
1671
|
5.4 |
MEDIUM
Network
|
gubbigubbi
|
kona_gallery_block
|
The Kona Gallery Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Kona: Instagram for Gutenberg" Block, specifically in the "align" attribute, in all versions up to, a…
|
CWE-79
Cross-site Scripting
|
CVE-2024-13400
|
2025-02-1 03:02 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1672
|
5.4 |
MEDIUM
Network
|
wpbean
|
wp_post_list_table
|
The WP Post List Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpb_post_list_table' shortcode in all versions up to, and including, 1.0.3 due to insufficie…
|
CWE-79
Cross-site Scripting
|
CVE-2024-13664
|
2025-02-1 02:58 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1673
|
5.4 |
MEDIUM
Network
|
stockdio
|
stockdio_historical_chart
|
The Stockdio Historical Chart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'stockdio-historical-chart' shortcode in all versions up to, and including, 2.8.18 due…
|
CWE-79
Cross-site Scripting
|
CVE-2024-13349
|
2025-02-1 02:58 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1674
|
5.4 |
MEDIUM
Network
|
partitionnumerique
|
music_sheet_viewer
|
The Music Sheet Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pn_msv' shortcode in all versions up to, and including, 4.1 due to insufficient input saniti…
|
CWE-79
Cross-site Scripting
|
CVE-2024-13670
|
2025-02-1 02:56 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1675
|
7.5 |
HIGH
Network
partitionnumerique
|
music_sheet_viewer
|
The Music Sheet Viewer plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 4.1 via the read_score_file() function. This makes it possible for unauthenticat…
|
NVD-CWE-noinfo
|
CVE-2024-13671
|
2025-02-1 02:50 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1676
|
6.1 |
MEDIUM
Network
|
-
|
-
|
IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed ar…
|
CWE-79
Cross-site Scripting
|
CVE-2024-49349
|
2025-02-1 02:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1677
|
6.4 |
MEDIUM
Network
|
-
|
-
|
IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4.0 through 3.2.4.1 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed ar…
|
CWE-79
Cross-site Scripting
|
CVE-2024-49339
|
2025-02-1 02:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1678
|
- |
|
-
|
-
|
Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could resu…
|
-
|
CVE-2024-12248
|
2025-02-1 02:15 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1679
|
5.4 |
MEDIUM
Network
|
vinayjain
|
embed_swagger_ui
|
The Embed Swagger UI plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpsgui' shortcode in all versions up to, and including, 1.0.0 due to insufficient input saniti…
|
CWE-79
Cross-site Scripting
|
CVE-2024-13700
|
2025-02-1 01:49 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1680
|
- |
|
-
|
-
|
PMD is an extensible multilanguage static code analyzer. The passphrase for the PMD and PMD Designer release signing keys are included in jar published to Maven Central. The private key itself is not…
|
CWE-200
CWE-540
Information Exposure
Inclusion of Sensitive Information in Source Code
|
CVE-2025-23215
|
2025-02-1 01:15 |
2025-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
