|
2571
|
5.4 |
MEDIUM
Network
|
migaweb
|
custom_post_type_templates_for_elementor
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Gangolf Custom post type templates for Elementor allows Stored XSS.This issue affe…
|
CWE-79
Cross-site Scripting
|
CVE-2024-51683
|
2024-11-7 07:12 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2572
|
5.4 |
MEDIUM
Network
|
hasthemes
|
ht_builder
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HasThemes HT Builder – WordPress Theme Builder for Elementor allows Stored XSS.This issue …
|
CWE-79
Cross-site Scripting
|
CVE-2024-51682
|
2024-11-7 07:12 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2573
|
5.4 |
MEDIUM
Network
|
coderevolution
|
wp_pocket_urls
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodeRevolution WP Pocket URLs allows Stored XSS.This issue affects WP Pocket URLs: from n/…
|
CWE-79
Cross-site Scripting
|
CVE-2024-51681
|
2024-11-7 07:11 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2574
|
5.4 |
MEDIUM
Network
|
crestaproject
|
cresta_addons_for_elementor
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CrestaProject – Rizzo Andrea Cresta Addons for Elementor allows Stored XSS.This issue affe…
|
CWE-79
Cross-site Scripting
|
CVE-2024-51680
|
2024-11-7 07:10 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2575
|
5.4 |
MEDIUM
Network
|
timelord
|
elo_rating_shortcode
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Marcel Pol Elo Rating Shortcode allows Stored XSS.This issue affects Elo Rating Shortcode:…
|
CWE-79
Cross-site Scripting
|
CVE-2024-51678
|
2024-11-7 07:10 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2576
|
5.4 |
MEDIUM
Network
|
webberzone
|
knowledge_base
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WebberZone Knowledge Base allows Stored XSS.This issue affects Knowledge Base: from n/a th…
|
CWE-79
Cross-site Scripting
|
CVE-2024-51677
|
2024-11-7 07:10 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2577
|
8.8 |
HIGH
Network
|
mansurahamed
|
woocommerce_quote_calculator
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mansur Ahamed Woocommerce Quote Calculator allows Blind SQL Injection.This issue affects Woocomme…
|
CWE-89
SQL Injection
|
CVE-2024-51626
|
2024-11-7 07:10 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2578
|
7.2 |
HIGH
Network
|
wpdeveloper
|
betterlinks
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPDeveloper BetterLinks allows SQL Injection.This issue affects BetterLinks: from n/a through 2.1…
|
CWE-89
SQL Injection
|
CVE-2024-51672
|
2024-11-7 07:08 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2579
|
4.3 |
MEDIUM
Network
|
wpthemespace
|
magical_addons_for_elementor
|
Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor allows Server Side Request Forgery.This issue affects Magical Addons For Elementor: from n/a through 1.2.1.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-51665
|
2024-11-7 07:07 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2580
|
6.5 |
MEDIUM
Network
|
appsmith
|
appsmith
|
AppSmith Community 1.8.3 before 1.46 allows SSRF via New DataSource for application/json requests to 169.254.169.254 to retrieve AWS metadata credentials.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-51408
|
2024-11-7 07:06 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
