Total
2080 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-4233 | 2024-05-08 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Tyche Softwares Print Invoice & Delivery Notes for WooCommerce, Tyche Softwares Arconix Shortcodes, Tyche Softwares Arconix FAQ.This issue affects Print Invoice & Delivery Notes for WooCommerce: from n/a through 4.8.1; Arconix Shortcodes: from n/a through 2.1.10; Arconix FAQ: from n/a through 1.9.3. | |||||
| CVE-2024-1438 | 2024-05-08 | N/A | 7.7 HIGH | ||
| Missing Authorization vulnerability in PressFore Rolo Slider.This issue affects Rolo Slider: from n/a through 1.0.9. | |||||
| CVE-2023-41651 | 2024-05-08 | N/A | 6.5 MEDIUM | ||
| Missing Authorization vulnerability in Multi-column Tag Map.This issue affects Multi-column Tag Map: from n/a through 17.0.26. | |||||
| CVE-2021-35001 | 2024-05-08 | N/A | 3.1 LOW | ||
| BMC Track-It! GetData Missing Authorization Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of BMC Track-It!. Authentication is required to exploit this vulnerability. The specific flaw exists within the GetData endpoint. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-14527. | |||||
| CVE-2024-33570 | 2024-05-07 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Wpmet Metform Elementor Contact Form Builder.This issue affects Metform Elementor Contact Form Builder: from n/a through 3.8.3. | |||||
| CVE-2023-31234 | 2024-05-07 | N/A | 6.3 MEDIUM | ||
| Missing Authorization vulnerability in Tilda Publishing.This issue affects Tilda Publishing: from n/a through 0.3.23. | |||||
| CVE-2024-33908 | 2024-05-07 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Themesgrove WidgetKit.This issue affects WidgetKit: from n/a through 2.5.0. | |||||
| CVE-2024-33576 | 2024-05-07 | N/A | 6.5 MEDIUM | ||
| Missing Authorization vulnerability in Ollybach WPPizza.This issue affects WPPizza: from n/a through 3.18.10. | |||||
| CVE-2024-33907 | 2024-05-07 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Michael Nelson Print My Blog.This issue affects Print My Blog: from n/a through 3.26.2. | |||||
| CVE-2024-34377 | 2024-05-06 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in A WP Life Video Gallery – Api Gallery, YouTube and Vimeo, Link Gallery.This issue affects Video Gallery – Api Gallery, YouTube and Vimeo, Link Gallery: from n/a through 1.5.3. | |||||
| CVE-2024-34389 | 2024-05-06 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in AF themes WP Post Author.This issue affects WP Post Author: from n/a through 3.6.4. | |||||
| CVE-2024-33912 | 2024-05-06 | N/A | 7.1 HIGH | ||
| Missing Authorization vulnerability in Academy LMS.This issue affects Academy LMS: from n/a through 1.9.16. | |||||
| CVE-2024-34378 | 2024-05-06 | N/A | 8.6 HIGH | ||
| Missing Authorization vulnerability in LeadConnector.This issue affects LeadConnector: from n/a through 1.7. | |||||
| CVE-2024-34372 | 2024-05-06 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in AddonMaster Post Grid Master.This issue affects Post Grid Master: from n/a through 3.4.7. | |||||
| CVE-2024-33910 | 2024-05-06 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Supsystic Digital Publications by Supsystic.This issue affects Digital Publications by Supsystic: from n/a through 1.7.7. | |||||
| CVE-2024-34387 | 2024-05-06 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in AF themes WP Post Author.This issue affects WP Post Author: from n/a through 3.6.4. | |||||
| CVE-2024-34371 | 2024-05-06 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Hamid Alinia – idehweb Login with phone number.This issue affects Login with phone number: from n/a through 1.7.18. | |||||
| CVE-2023-0923 | 1 Redhat | 2 Enterprise Linux, Openshift Data Science | 2024-05-03 | N/A | 9.8 CRITICAL |
| A flaw was found in the Kubernetes service for notebooks in RHODS, where it does not prevent pods from other namespaces and applications from making requests to the Jupyter API. This flaw can lead to file content exposure and other issues. | |||||
| CVE-2023-38102 | 2024-05-03 | N/A | 8.8 HIGH | ||
| NETGEAR ProSAFE Network Management System createUser Missing Authorization Privilege Escalation Vulnerability. This vulnerability allows remote attackers to escalate privileges on affected installations of NETGEAR ProSAFE Network Management System. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the createUser function. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from the user. Was ZDI-CAN-19726. | |||||
| CVE-2024-33920 | 2024-05-03 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Kama Democracy Poll.This issue affects Democracy Poll: from n/a through 6.0.3. | |||||