|
2621
|
- |
|
-
|
-
|
Cross-Site Request Forgery (CSRF) vulnerability in Marsian allows Cross Site Request Forgery.This issue affects i-transform: from n/a through 3.0.9.
|
CWE-352
Origin Validation Error
|
CVE-2024-38764
|
2025-01-2 22:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2622
|
- |
|
-
|
-
|
A vulnerability was found in Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2. It has been rated as critical. This issue affects some unknown processing of the file /doc.ht…
|
CWE-285
CWE-266
Improper Authorization
Incorrect Privilege Assignment
|
CVE-2024-13109
|
2025-01-2 22:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2623
|
- |
|
-
|
-
|
A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. It has been declared as critical. This vulnerability affects unknown code of the file /goform/form2NetSniper.cgi. The manipulati…
|
CWE-284
CWE-266
Improper Access Control
Incorrect Privilege Assignment
|
CVE-2024-13108
|
2025-01-2 22:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2624
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ConvertCalculator ConvertCalculator for WordPress allows Stored XSS.This issue affects ConvertCal…
|
CWE-79
Cross-site Scripting
|
CVE-2024-56302
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2625
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fla-shop.com Interactive UK Map allows Stored XSS.This issue affects Interactive UK Map: from n/a…
|
CWE-79
Cross-site Scripting
|
CVE-2024-56267
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2626
|
- |
|
-
|
-
|
Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio …
|
CWE-862
Missing Authorization
|
CVE-2024-56266
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2627
|
- |
|
-
|
-
|
Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector allows Upload a Web Shell to a Web Server.This issue affects ACF City Selector: from n/a through 1.14.0.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-56264
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2628
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Shots for Dribbble allows DOM-Based XSS.This issue affects GS Shots for Dribbble: f…
|
CWE-79
Cross-site Scripting
|
CVE-2024-56263
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2629
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Coaches allows Stored XSS.This issue affects GS Coaches: from n/a through 1.1.0.
|
CWE-79
Cross-site Scripting
|
CVE-2024-56262
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2630
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins Project Showcase allows Stored XSS.This issue affects Project Showcase: from n/a throu…
|
CWE-79
Cross-site Scripting
|
CVE-2024-56261
|
2025-01-2 21:15 |
2025-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
