361
|
- |
|
-
|
-
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in cmssoft CSV Product Import Export for WooCommerce allows SQL Injection.This issue affects CSV Pro…
|
CWE-89
SQL Injection
|
CVE-2024-49244
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
362
|
- |
|
-
|
-
|
Cross-Site Request Forgery (CSRF) vulnerability in Ahmet Imamoglu Ahmeti Wp Timeline allows Stored XSS.This issue affects Ahmeti Wp Timeline: from n/a through 5.1.
|
-
|
CVE-2024-49237
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
363
|
- |
|
-
|
-
|
Insertion of Sensitive Information Into Sent Data vulnerability in VideoWhisper.Com Contact Forms, Live Support, CRM, Video Messages allows Retrieve Embedded Sensitive Data.This issue affects Contact…
|
CWE-201
Insertion of Sensitive Information Into Sent Data
|
CVE-2024-49235
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
364
|
- |
|
-
|
-
|
Cross-Site Request Forgery (CSRF) vulnerability in Arif Nezami Better Author Bio allows Cross-Site Scripting (XSS).This issue affects Better Author Bio: from n/a through 2.7.10.11.
|
CWE-352
Origin Validation Error
|
CVE-2024-49229
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
365
|
- |
|
-
|
-
|
Cross-Site Request Forgery (CSRF) vulnerability in Shibu Lijack a.K.A CyberJack CJ Change Howdy allows Stored XSS.This issue affects CJ Change Howdy: from n/a through 3.3.1.
|
CWE-352
Origin Validation Error
|
CVE-2024-49223
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
366
|
- |
|
-
|
-
|
Cross-Site Request Forgery (CSRF) vulnerability in Julian Weinert // cs&m cSlider allows Stored XSS.This issue affects cSlider: from n/a through 2.4.2.
|
CWE-352
Origin Validation Error
|
CVE-2024-49221
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
367
|
- |
|
-
|
-
|
Cross-Site Request Forgery (CSRF) vulnerability in Cookie Scanner – Nikel Schubert Cookie Scanner allows Stored XSS.This issue affects Cookie Scanner: from n/a through 1.1.
|
CWE-352
Origin Validation Error
|
CVE-2024-49220
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
368
|
- |
|
-
|
-
|
Incorrect Privilege Assignment vulnerability in themexpo RS-Members allows Privilege Escalation.This issue affects RS-Members: from n/a through 1.0.3.
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2024-49219
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
369
|
- |
|
-
|
-
|
Incorrect Privilege Assignment vulnerability in Madiri Salman Aashish Adding drop down roles in registration allows Privilege Escalation.This issue affects Adding drop down roles in registration: fro…
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2024-49217
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
370
|
- |
|
-
|
-
|
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the SubnetMask parameter in the SetGuestZoneRouterSettings function. This vulnera…
|
-
|
CVE-2024-48638
|
2024-10-18 21:52 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|