Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

7.1

HIGH

CVE-2024-52461

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kinsta WordPress Hosting Infinite Slider allows Reflected XSS.This issue affects Infinite Slider: from n/a through 2.0.1....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.1

HIGH

CVE-2024-52460

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AtaraPay AtaraPay WooCommerce Payment Gateway allows Reflected XSS.This issue affects AtaraPay WooCommerce Payment Gateway: from n/a through 2.0.13....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.1

HIGH

CVE-2024-52459

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chameleoni.Com Chameleoni Jobs chameleon-jobs allows Reflected XSS.This issue affects Chameleoni Jobs: from n/a through 2.5.4....

Affected Products :
Published: Dec. 02, 2024

Modified: Apr. 30, 2025
7.1

HIGH

CVE-2024-52458

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Templines TM Islamic Helper allows Reflected XSS.This issue affects TM Islamic Helper: from n/a through 1.0.1....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.1

HIGH

CVE-2024-52457

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Youneeq Youneeq Recommendations allows Reflected XSS.This issue affects Youneeq Recommendations: from n/a through 3.0.7....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.1

HIGH

CVE-2024-52456

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPoets Awesome Studio allows Reflected XSS.This issue affects Awesome Studio: from n/a through 2.4.4....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.1

HIGH

CVE-2024-52455

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GoQSystem Inc. GoQSmile allows Reflected XSS.This issue affects GoQSmile: from n/a through 1.0.1....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.1

HIGH

CVE-2024-52454

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GoQSystem Inc. GoQMieruca allows Reflected XSS.This issue affects GoQMieruca: from n/a through 1.0.0....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.1

HIGH

CVE-2024-52453

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jon Lorang Library Bookshelves allows Reflected XSS.This issue affects Library Bookshelves: from n/a through 5.8....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.1

HIGH

CVE-2024-52452

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in eduNEXT Open edX LMS allows Reflected XSS.This issue affects Open edX LMS: from n/a through 2.6.1....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
5.9

MEDIUM

CVE-2024-51900

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Richard K Miller What Would Seth Godin Do allows Stored XSS.This issue affects What Would Seth Godin Do: from n/a through 2.1.1....

Affected Products :
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.7

HIGH

CVE-2024-12015

The 'Project Manager' WordPress Plugin is affected by an authenticated SQL injection vulnerability in the 'orderby' parameter in the '/pm/v2/activites' route....

Affected Products : wp_project_manager
Published: Dec. 02, 2024

Modified: Dec. 02, 2024
7.8

HIGH

CVE-2024-43053

Memory corruption while invoking IOCTL calls from user space to read WLAN target diagnostic information....

Affected Products : wcd9380_firmware wcd9385_firmware qca2062_firmware qca2064_firmware qca2065_firmware qca2066_firmware snapdragon_7c\+_gen_3_compute_firmware wcn3660b_firmware fastconnect_6900_firmware fastconnect_7800_firmware +30 more products
Published: Dec. 02, 2024

Modified: Dec. 12, 2024
7.8

HIGH

CVE-2024-43052

Memory corruption while processing API calls to NPU with invalid input....

Affected Products : qca6391_firmware qca6426_firmware qca6436_firmware sd865_5g_firmware wcd9380_firmware wcd9385_firmware wcn3980_firmware wsa8810_firmware wsa8815_firmware wsa8830_firmware +175 more products
Published: Dec. 02, 2024

Modified: Dec. 12, 2024
7.8

HIGH

CVE-2024-43050

Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver....

Affected Products : aqt1000_firmware qca6391_firmware qca6420_firmware qca6430_firmware qca6595au_firmware wcd9341_firmware wcd9380_firmware wcd9385_firmware wsa8810_firmware wsa8815_firmware +99 more products
Published: Dec. 02, 2024

Modified: Dec. 12, 2024
7.8

HIGH

CVE-2024-43049

Memory corruption while invoking IOCTL calls from user space to set generic private command inside WLAN driver....

Affected Products : wcd9380_firmware wcd9385_firmware wsa8830_firmware wsa8835_firmware snapdragon_7c\+_gen_3_compute_firmware wcn3660b_firmware fastconnect_6900_firmware fastconnect_7800_firmware sdm429w_firmware wcn3620_firmware +28 more products
Published: Dec. 02, 2024

Modified: Dec. 12, 2024
7.8

HIGH

CVE-2024-43048

Memory corruption when invalid input is passed to invoke GPU Headroom API call....

Affected Products : wcd9341_firmware wcd9380_firmware wcd9385_firmware wcn3988_firmware wsa8810_firmware wsa8815_firmware wsa8830_firmware wsa8835_firmware qcm4325_firmware sg4150p_firmware +94 more products
Published: Dec. 02, 2024

Modified: Dec. 12, 2024
7.5

HIGH

CVE-2024-33063

Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present....

Affected Products : qam8295p_firmware qca6391_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6155p_firmware sa8155p_firmware sa8195p_firmware sa8295p_firmware wcd9341_firmware +240 more products
Published: Dec. 02, 2024

Modified: Dec. 12, 2024
8.4

HIGH

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously....

Affected Products : qam8295p_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware +652 more products
Published: Dec. 02, 2024

Modified: Dec. 12, 2024
6.7

MEDIUM

CVE-2024-33053

Memory corruption when multiple threads try to unregister the CVP buffer at the same time....

Affected Products : qam8295p_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware +104 more products
Published: Dec. 02, 2024

Modified: Dec. 12, 2024

Showing 20 of 291573 Results

1
...
1708
1709
1710
1711
1712
1713
1714
...
14579

Latest CVE Feed

7.1

7.1

7.1

7.1

7.1

7.1

7.1

7.1

7.1

7.1

5.9

7.7

7.8

7.8

7.8

7.8

7.8

7.5

8.4

6.7

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable