|
313871
|
4.3 |
MEDIUM
Network
|
smackcoders
|
sendgrid
|
The SendGrid for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'wp_mailplus_clear_logs' function in all versions up to, and includ…
|
CWE-862
Missing Authorization
|
CVE-2024-9364
|
2024-10-23 00:26 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313872
|
5.4 |
MEDIUM
Network
|
tychesoftwares
|
arconix_shortcodes
|
The Arconix Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'button' shortcode in all versions up to, and including, 2.1.12 due to insufficient input san…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9703
|
2024-10-23 00:25 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313873
|
5.4 |
MEDIUM
Network
|
phpgurukul
|
ifsc_code_finder
|
A vulnerability has been found in PHPGurukul IFSC Code Finder Project 1.0 and classified as problematic. This vulnerability affects unknown code of the file search.php. The manipulation leads to cros…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10192
|
2024-10-23 00:09 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313874
|
5.4 |
MEDIUM
Network
|
wpzest
|
easy_menu_manager
|
The Easy Menu Manager | WPZest plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.1 due to insufficient input sanitizatio…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9366
|
2024-10-23 00:09 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313875
|
5.4 |
MEDIUM
Network
|
dankedev
|
elemenda
|
The Elemenda plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 0.0.2 due to insufficient input sanitization and output escap…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9373
|
2024-10-23 00:07 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313876
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he
Fix the NULL pointer dereference in mt7996_mcu_sta_bfe…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47681
|
2024-10-22 23:57 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313877
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
exfat: resolve memory leak from exfat_create_upcase_table()
If exfat_load_upcase_table reaches end and returns -EINVAL,
allocated…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-47677
|
2024-10-22 23:55 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313878
|
7.3 |
HIGH
Local
|
citrix
|
workspace
|
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
|
NVD-CWE-noinfo
|
CVE-2024-7890
|
2024-10-22 23:53 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313879
|
7.3 |
HIGH
Local
|
citrix
|
workspace
|
Local privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix Workspace app for Windows
|
NVD-CWE-noinfo
|
CVE-2024-7889
|
2024-10-22 23:50 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313880
|
9.8 |
CRITICAL
Network
|
phpgurukul
|
boat_booking_system
|
A vulnerability has been found in PHPGurukul Boat Booking System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file book-boat.php?bid=1 of the comp…
|
CWE-89
SQL Injection
|
CVE-2024-10153
|
2024-10-22 23:45 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
