Latest CVE Feed
-
5.9
MEDIUMCVE-2024-43967
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Stark Digital WP Testimonial Widget allows Stored XSS.This issue affects WP Testimonial Widget: from n/a through 3.1.... Read more
Affected Products : wp_testimonial_widget- Published: Aug. 26, 2024
- Modified: Sep. 18, 2024
-
8.8
HIGHCVE-2024-39641
Cross-Site Request Forgery (CSRF) vulnerability in ThimPress LearnPress.This issue affects LearnPress: from n/a through 4.2.6.8.2.... Read more
Affected Products : learnpress- Published: Aug. 26, 2024
- Modified: Sep. 18, 2024
-
8.8
HIGHCVE-2024-39645
Cross-Site Request Forgery (CSRF) vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.2.... Read more
Affected Products : tutor_lms- Published: Aug. 26, 2024
- Modified: Sep. 18, 2024
-
8.8
HIGHCVE-2024-39657
Cross-Site Request Forgery (CSRF) vulnerability in Sender Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce.This issue affects Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce: from n/a through 2.6.18.... Read more
Affected Products : sender- Published: Aug. 26, 2024
- Modified: Sep. 18, 2024
-
8.8
HIGHCVE-2024-43116
Cross-Site Request Forgery (CSRF) vulnerability in 10up Simple Local Avatars.This issue affects Simple Local Avatars: from n/a through 2.7.10.... Read more
Affected Products : simple_local_avatars- Published: Aug. 26, 2024
- Modified: Sep. 18, 2024
-
8.8
HIGHCVE-2024-43117
Cross-Site Request Forgery (CSRF) vulnerability in WPMU DEV Hummingbird.This issue affects Hummingbird: from n/a through 3.9.1.... Read more
- Published: Aug. 26, 2024
- Modified: Sep. 18, 2024
-
7.5
HIGHCVE-2024-43230
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Shared Files – File Upload Form Shared Files.This issue affects Shared Files: from n/a through 1.7.28.... Read more
Affected Products : shared_files- Published: Aug. 26, 2024
- Modified: Sep. 18, 2024
-
8.8
HIGHCVE-2023-37233
Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks.... Read more
Affected Products : spectrum- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
9.8
CRITICALCVE-2023-37234
Loftware Spectrum through 4.6 has unprotected JMX Registry.... Read more
Affected Products : spectrum- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
7.5
HIGHCVE-2023-37232
Loftware Spectrum through 4.6 exposes Sensitive Information (Logs) to an Unauthorized Actor.... Read more
Affected Products : spectrum- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
8.8
HIGHCVE-2024-8242
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_user_profile() function in all versions up to, and including, 4.15.3. This makes ... Read more
Affected Products : mstore_api- Published: Sep. 13, 2024
- Modified: Sep. 18, 2024
-
9.1
CRITICALCVE-2024-37995
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIM... Read more
Affected Products : simatic_rf185c_firmware simatic_rf186c_firmware simatic_rf186ci_firmware simatic_rf188ci_firmware simatic_rf166c_firmware simatic_rf188c_firmware simatic_rf360r_firmware simatic_reader_rf610r_cmiit_firmware simatic_reader_rf610r_etsi_firmware simatic_reader_rf610r_fcc_firmware +44 more products- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
7.1
HIGHCVE-2024-37994
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIM... Read more
Affected Products : simatic_rf185c_firmware simatic_rf186c_firmware simatic_rf186ci_firmware simatic_rf188ci_firmware simatic_rf166c_firmware simatic_rf188c_firmware simatic_rf360r_firmware simatic_reader_rf610r_cmiit_firmware simatic_reader_rf610r_etsi_firmware simatic_reader_rf610r_fcc_firmware +44 more products- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
5.1
MEDIUMCVE-2024-8145
A vulnerability, which was classified as problematic, has been found in ClassCMS 4.8. Affected by this issue is some unknown functionality of the file /index.php/admin of the component Article Handler. The manipulation of the argument Title leads to basic... Read more
- Published: Aug. 25, 2024
- Modified: Sep. 18, 2024
-
7.5
HIGHCVE-2024-37993
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIM... Read more
Affected Products : simatic_rf185c_firmware simatic_rf186c_firmware simatic_rf186ci_firmware simatic_rf188ci_firmware simatic_rf166c_firmware simatic_rf188c_firmware simatic_rf360r_firmware simatic_reader_rf610r_cmiit_firmware simatic_reader_rf610r_etsi_firmware simatic_reader_rf610r_fcc_firmware +44 more products- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
7.5
HIGHCVE-2024-37992
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIM... Read more
Affected Products : simatic_rf185c_firmware simatic_rf186c_firmware simatic_rf186ci_firmware simatic_rf188ci_firmware simatic_rf166c_firmware simatic_rf188c_firmware simatic_rf360r_firmware simatic_reader_rf610r_cmiit_firmware simatic_reader_rf610r_etsi_firmware simatic_reader_rf610r_fcc_firmware +44 more products- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
6.5
MEDIUMCVE-2024-37991
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIM... Read more
Affected Products : simatic_rf185c_firmware simatic_rf186c_firmware simatic_rf186ci_firmware simatic_rf188ci_firmware simatic_rf166c_firmware simatic_rf188c_firmware simatic_rf360r_firmware simatic_reader_rf610r_cmiit_firmware simatic_reader_rf610r_etsi_firmware simatic_reader_rf610r_fcc_firmware +44 more products- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
7.0
HIGHCVE-2024-37990
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIM... Read more
Affected Products : simatic_rf185c_firmware simatic_rf186c_firmware simatic_rf186ci_firmware simatic_rf188ci_firmware simatic_rf166c_firmware simatic_rf188c_firmware simatic_rf360r_firmware simatic_reader_rf610r_cmiit_firmware simatic_reader_rf610r_etsi_firmware simatic_reader_rf610r_fcc_firmware +44 more products- Published: Sep. 10, 2024
- Modified: Sep. 18, 2024
-
4.4
MEDIUMCVE-2024-0111
NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a crash or produce incorrect output by passing a malformed ELF file. A successful exploit of this vulnerability may lead to a limited denial of service or data tamp... Read more
Affected Products : cuda_toolkit- Published: Aug. 31, 2024
- Modified: Sep. 18, 2024
-
7.3
HIGHCVE-2024-8269
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to unauthorized user registration in all versions up to, and including, 4.15.3. This is due to the plugin not checking that user registration is enabled prio... Read more
Affected Products : mstore_api- Published: Sep. 13, 2024
- Modified: Sep. 18, 2024