1551
|
7.3 |
HIGH
Local
|
microsoft
|
windows_server_2016 windows_server_2019 windows_server_2022 windows_11_22h2 windows_11_21h2 windows_10_22h2 windows_10_21h2 windows_10_1809 windows_10_1607 windows_11_23h2<…
|
Summary
Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated v…
|
NVD-CWE-Other
|
CVE-2024-38202
|
2024-09-18 09:15 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1552
|
6.7 |
MEDIUM
Local
|
microsoft
|
windows_10_1507 windows_10_1809 windows_server_2019 windows_server_2022 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_11_23h2 windows_server_2022_…
|
Summary:
Microsoft was notified that an elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security (VBS), including a subset of Azure Virtual Machin…
|
NVD-CWE-Other
|
CVE-2024-21302
|
2024-09-18 09:15 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1553
|
5.4 |
MEDIUM
Network
|
qoders
|
upqode_google_maps
|
The UpQode Google Maps WordPress plugin through 1.0.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which coul…
|
CWE-79
Cross-site Scripting
|
CVE-2023-0094
|
2024-09-18 05:35 |
2024-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1554
|
7.5 |
HIGH
Network
containers
|
aardvark-dns
|
A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open…
|
NVD-CWE-noinfo
|
CVE-2024-8418
|
2024-09-18 05:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1555
|
4.3 |
MEDIUM
Network
|
imagerecycle
|
imagerecycle_pdf_\&_image_compression
|
The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.14. This is due to missing or incorrect nonce valid…
|
CWE-352
Origin Validation Error
|
CVE-2024-8120
|
2024-09-18 05:07 |
2024-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1556
|
4.8 |
MEDIUM
Network
|
cleversoft
|
clever_addons_for_elementor
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CleverSoft Clever Addons for Elementor allows Stored XSS.This issue affects Clever Addons …
|
CWE-79
Cross-site Scripting
|
CVE-2024-43324
|
2024-09-18 05:04 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1557
|
6.1 |
MEDIUM
Network
|
orbisius
|
child_theme_creator
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Svetoslav Marinov (Slavi) Child Theme Creator allows Reflected XSS.This issue affects Chil…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43276
|
2024-09-18 05:00 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1558
|
5.4 |
MEDIUM
Network
|
cpothemes
|
allegiant
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Chill Allegiant allegiant allows Stored XSS.This issue affects Allegiant: from n/a thro…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43329
|
2024-09-18 04:59 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1559
|
6.1 |
MEDIUM
Network
|
wpbeaveraddons
|
powerpack_lite_for_beaver_builder
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack for Beaver Builder allows Reflected XSS.This issue affects Pow…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43330
|
2024-09-18 04:53 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1560
|
7.8 |
HIGH
Local
|
dell
|
dbutil_2_3.sys
|
Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user acc…
|
NVD-CWE-Other
|
CVE-2021-21551
|
2024-09-18 04:47 |
2021-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|