2271
|
4.3 |
MEDIUM
Network
|
checkoutplugins
|
stripe_payments_for_woocommerce
|
Cross-Site Request Forgery (CSRF) vulnerability in Checkout Plugins Stripe Payments For WooCommerce by Checkout.This issue affects Stripe Payments For WooCommerce by Checkout: from n/a through 1.9.1.
|
CWE-352
Origin Validation Error
|
CVE-2024-43316
|
2024-09-13 06:26 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2272
|
5.4 |
MEDIUM
Network
|
fontsplugin
|
fonts_plugin
|
Cross-Site Request Forgery (CSRF) vulnerability in Fonts Plugin Fonts allows Stored XSS.This issue affects Fonts: from n/a through 3.7.7.
|
CWE-352
Origin Validation Error
|
CVE-2024-43301
|
2024-09-13 06:24 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2273
|
7.5 |
HIGH
Network
theme-sphere
|
smartmag
|
Exposure of Sensitive Information to an Unauthorized Actor, Missing Authorization vulnerability in ThemeSphere SmartMag allows Excavation, Accessing Functionality Not Properly Constrained by ACLs.Thi…
|
CWE-862
Missing Authorization
|
CVE-2024-37930
|
2024-09-13 06:24 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2274
|
5.4 |
MEDIUM
Network
|
softaculous
|
speedycache
|
Cross-Site Request Forgery (CSRF) vulnerability in Softaculous Team SpeedyCache.This issue affects SpeedyCache: from n/a through 1.1.8.
|
CWE-352
Origin Validation Error
|
CVE-2024-43299
|
2024-09-13 06:23 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2275
|
8.8 |
HIGH
Network
|
wpdeveloper
|
betterdocs
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WPDeveloper BetterDocs allows PHP Local File Inclusion.This issue affects BetterDocs: from n/a through …
|
CWE-22
Path Traversal
|
CVE-2024-43129
|
2024-09-13 06:21 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2276
|
4.3 |
MEDIUM
Network
|
wpdataaccess
|
wp_data_access
|
Cross-Site Request Forgery (CSRF) vulnerability in Passionate Programmers B.V. WP Data Access.This issue affects WP Data Access: from n/a through 5.5.7.
|
CWE-352
Origin Validation Error
|
CVE-2024-43295
|
2024-09-13 06:20 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2277
|
8.8 |
HIGH
Network
|
sendinblue
|
newsletter\ _smtp\ _email_marketing_and_subscribe
|
Cross-Site Request Forgery (CSRF) vulnerability in Brevo Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue.This issue affects Newsletter, SMTP, Email marketing and Subscribe forms b…
|
CWE-352
Origin Validation Error
|
CVE-2024-43287
|
2024-09-13 06:19 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2278
|
4.3 |
MEDIUM
Network
|
wpbackitup
|
backup_and_restore_wordpress
|
Cross-Site Request Forgery (CSRF) vulnerability in WPBackItUp Backup and Restore WordPress.This issue affects Backup and Restore WordPress: from n/a through 1.50.
|
CWE-352
Origin Validation Error
|
CVE-2024-43269
|
2024-09-13 06:18 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2279
|
8.8 |
HIGH
Network
|
themewinter
|
wpcafe
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Themewinter WPCafe allows PHP Local File Inclusion.This issue affects WPCafe: from n/a through 2.2.28.
|
CWE-22
Path Traversal
|
CVE-2024-43135
|
2024-09-13 06:18 |
2024-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2280
|
3.5 |
LOW
Network
|
analytify
|
analytify_-_google_analytics_dashboard
|
Cross-Site Request Forgery (CSRF) vulnerability in Analytify.This issue affects Analytify: from n/a through 5.3.1.
|
CWE-352
Origin Validation Error
|
CVE-2024-43265
|
2024-09-13 06:17 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|