|
312561
|
- |
|
-
|
-
|
REDCap 14.7.0 allows HTML injection via the project title of a New Project action. This can lead to resultant logout CSRF via index.php?logout=1, and can also be used to insert a link to an external …
|
-
|
CVE-2024-45527
|
2024-09-4 00:35 |
2024-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312562
|
- |
|
-
|
-
|
Lightdash version 0.1024.6 allows users with the necessary permissions, such as Administrator or Editor, to create and share dashboards. A dashboard that contains HTML elements which point to a threa…
|
-
|
CVE-2024-6586
|
2024-09-4 00:35 |
2024-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312563
|
- |
|
-
|
-
|
Multiple stored cross-site scripting (“XSS”) vulnerabilities in the markdown dashboard and dashboard comment functionality of Lightdash version 0.1024.6 allows remote authenticated threat actors to i…
|
-
|
CVE-2024-6585
|
2024-09-4 00:35 |
2024-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312564
|
5.4 |
MEDIUM
Network
|
automattic
|
ghacitivity
ghactivity
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Automattic GHActivity allows Stored XSS.This issue affects GHActivity: from n/a through 2.…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43949
|
2024-09-4 00:27 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312565
|
6.1 |
MEDIUM
Network
|
dineshkarki
|
wp_armour
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dinesh Karki WP Armour Extended.This issue affects WP Armour Extended: from n/a through 1.…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43948
|
2024-09-4 00:22 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312566
|
5.4 |
MEDIUM
Network
|
sktthemes
|
skt_blocks
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SKT Themes SKT Blocks – Gutenberg based Page Builder allows Stored XSS.This issue affects …
|
CWE-79
Cross-site Scripting
|
CVE-2024-43946
|
2024-09-4 00:21 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312567
|
5.4 |
MEDIUM
Network
|
wpdeveloper
|
embedpress
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloper EmbedPress allows Stored XSS.This issue affects EmbedPress: from n/a through 4…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43936
|
2024-09-4 00:20 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312568
|
5.4 |
MEDIUM
Network
|
wpdelicious
|
wp_delicious
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Delicious Delicious Recipes – WordPress Recipe Plugin allows Stored XSS.This issue affe…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43935
|
2024-09-4 00:19 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312569
|
5.4 |
MEDIUM
Network
|
robfelty
|
collapsing_archives
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Robert Felty Collapsing Archives allows Stored XSS.This issue affects Collapsing Archives:…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43934
|
2024-09-4 00:17 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312570
|
6.1 |
MEDIUM
Network
|
wpbeaverbuilder
|
beaver_builder
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Beaver Builder Team Beaver Builder allows Reflected XSS.This issue affects Beaver Buil…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43926
|
2024-09-4 00:15 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
