|
1111
|
- |
|
-
|
-
|
A vulnerability was found in Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2. It has been rated as critical. This issue affects some unknown processing of the file /doc.ht…
|
CWE-285
CWE-266
Improper Authorization
Incorrect Privilege Assignment
|
CVE-2024-13109
|
2025-01-2 22:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1112
|
- |
|
-
|
-
|
A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. It has been declared as critical. This vulnerability affects unknown code of the file /goform/form2NetSniper.cgi. The manipulati…
|
CWE-284
CWE-266
Improper Access Control
Incorrect Privilege Assignment
|
CVE-2024-13108
|
2025-01-2 22:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1113
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ConvertCalculator ConvertCalculator for WordPress allows Stored XSS.This issue affects ConvertCal…
|
CWE-79
Cross-site Scripting
|
CVE-2024-56302
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1114
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fla-shop.com Interactive UK Map allows Stored XSS.This issue affects Interactive UK Map: from n/a…
|
CWE-79
Cross-site Scripting
|
CVE-2024-56267
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1115
|
- |
|
-
|
-
|
Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio …
|
CWE-862
Missing Authorization
|
CVE-2024-56266
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1116
|
- |
|
-
|
-
|
Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector allows Upload a Web Shell to a Web Server.This issue affects ACF City Selector: from n/a through 1.14.0.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-56264
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1117
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Shots for Dribbble allows DOM-Based XSS.This issue affects GS Shots for Dribbble: f…
|
CWE-79
Cross-site Scripting
|
CVE-2024-56263
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1118
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Coaches allows Stored XSS.This issue affects GS Coaches: from n/a through 1.1.0.
|
CWE-79
Cross-site Scripting
|
CVE-2024-56262
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1119
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins Project Showcase allows Stored XSS.This issue affects Project Showcase: from n/a throu…
|
CWE-79
Cross-site Scripting
|
CVE-2024-56261
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1120
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in StorePlugin ShopElement allows Stored XSS.This issue affects ShopElement: from n/a through 2.0.0.
|
CWE-79
Cross-site Scripting
|
CVE-2024-56260
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
