Latest CVE Feed
-
8.8
HIGHCVE-2024-43593
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-43592
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-43589
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-43453
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-43607
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-43608
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability... Read more
- Published: Oct. 08, 2024
- Modified: Oct. 22, 2024
-
7.1
HIGHCVE-2024-49629
Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endless Posts Navigation allows Stored XSS.This issue affects Endless Posts Navigation: from n/a through 2.2.7.... Read more
Affected Products : endless_posts_navigation- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49620
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Naudin Vladimir FERMA.Ru.Net allows Blind SQL Injection.This issue affects FERMA.Ru.Net: from n/a through 1.3.3.... Read more
Affected Products : ferma.ru.net- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49619
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Acespritech Solutions Pvt. Ltd. Social Link Groups allows Blind SQL Injection.This issue affects Social Link Groups: from n/a through 1.1.0.... Read more
Affected Products : social_link_groups- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
9.8
CRITICALCVE-2024-47634
Cross-Site Request Forgery (CSRF) vulnerability in Streamline.Lv CartBounty – Save and recover abandoned carts for WooCommerce allows Cross Site Request Forgery.This issue affects CartBounty – Save and recover abandoned carts for WooCommerce: from n/a thr... Read more
Affected Products : cartbounty- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49250
Cross-Site Request Forgery (CSRF) vulnerability in Michael Tran Table of Contents Plus allows Cross Site Request Forgery.This issue affects Table of Contents Plus: from n/a through 2408.... Read more
Affected Products : table_of_contents_plus- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49272
Cross-Site Request Forgery (CSRF) vulnerability in WPWeb Social Auto Poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through 5.3.15.... Read more
Affected Products : social_auto_poster- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49274
Cross-Site Request Forgery (CSRF) vulnerability in Infomaniak Staff VOD Infomaniak allows Cross Site Request Forgery.This issue affects VOD Infomaniak: from n/a through 1.5.7.... Read more
Affected Products : vod_infomaniak- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49275
Cross-Site Request Forgery (CSRF) vulnerability in Martin Gibson IdeaPush allows Cross Site Request Forgery.This issue affects IdeaPush: from n/a through 8.69.... Read more
Affected Products : ideapush- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49290
Cross-Site Request Forgery (CSRF) vulnerability in Gora Tech LLC Cooked Pro allows Cross Site Request Forgery.This issue affects Cooked Pro: from n/a before 1.8.0.... Read more
Affected Products : cooked- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49306
Cross-Site Request Forgery (CSRF) vulnerability in WP-buy WP Content Copy Protection & No Right Click allows Cross Site Request Forgery.This issue affects WP Content Copy Protection & No Right Click: from n/a through 3.5.9.... Read more
Affected Products : wp_content_copy_protection_\&_no_right_click- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
5.4
MEDIUMCVE-2024-46237
PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) via the patname, pataddress, and medhis parameters in doctor/add-patient.php and doctor/edit-patient.php.... Read more
Affected Products : hospital_management_system- Published: Oct. 09, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49325
Subscriber Broken Access Control in Photo Gallery Builder <= 3.0 versions.... Read more
Affected Products : photo_gallery_builder- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49627
Cross-Site Request Forgery (CSRF) vulnerability in Noor Alam WordPress Image SEO allows Cross Site Request Forgery.This issue affects WordPress Image SEO: from n/a through 1.1.4.... Read more
Affected Products : wordpress_image_seo- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024
-
8.8
HIGHCVE-2024-49628
Cross-Site Request Forgery (CSRF) vulnerability in WhileTrue Most And Least Read Posts Widget allows Cross Site Request Forgery.This issue affects Most And Least Read Posts Widget: from n/a through 2.5.18.... Read more
Affected Products : most_and_least_read_posts_widget- Published: Oct. 20, 2024
- Modified: Oct. 22, 2024