|
161
|
- |
|
-
|
-
|
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that
could allow an unauthorized attacker to modify configuration values outside of the normal ra…
New
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-10498
|
2025-01-17 20:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
162
|
- |
|
-
|
-
|
CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an
authorized attacker to modify values outside those defined by their privileges (Elevation of Privile…
New
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-10497
|
2025-01-17 20:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
163
|
5.4 |
MEDIUM
Network
|
-
|
-
|
The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style_settings’ parameter in versions 2.9.0.1 up to, and including, 2.9.1.3 due to insufficient input sani…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-13378
|
2025-01-17 19:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
164
|
7.2 |
HIGH
Network
-
|
-
|
The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘alt’ parameter in all versions up to, and including, 2.9.1.3 due to insufficient input sanitization and ou…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-13377
|
2025-01-17 19:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
165
|
- |
|
-
|
-
|
CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could
cause information disclosure, impacts workstation integrity and potential remote code execution on the
c…
New
|
CWE-611
XXE
|
CVE-2024-12476
|
2025-01-17 19:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
166
|
- |
|
-
|
-
|
CWE-924: Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability
exists that could cause partial loss of confidentiality, loss of integrity and availabi…
New
|
CWE-924
Improper Enforcement of Message Integrity During Transmission in a Communication Channel
|
CVE-2024-12399
|
2025-01-17 19:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
167
|
5.3 |
MEDIUM
Network
-
|
-
|
The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check when adding rooms in all versions up to, and including, 2.1.5. This make…
New
|
CWE-284
Improper Access Control
|
CVE-2024-12370
|
2025-01-17 18:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
168
|
- |
|
-
|
-
|
CWE-131: Incorrect Calculation of Buffer Size vulnerability exists that could cause Denial-of-Service of the
product when an unauthenticated user is sending a crafted HTTPS packet to the webserver.
New
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2024-11425
|
2025-01-17 18:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
169
|
- |
|
-
|
-
|
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that
could allow local attackers to exploit these issues to potentially execute arbitrary code wh…
New
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-11139
|
2025-01-17 18:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
170
|
- |
|
-
|
-
|
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Update
|
-
|
CVE-2025-21630
|
2025-01-17 18:15 |
2025-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
