|
310051
|
5.4 |
MEDIUM
Adjacent
|
-
|
-
|
An Incorrect Comparison vulnerability in the local address verification API of Juniper Networks Junos OS Evolved allows an unauthenticated network-adjacent attacker to create sessions or send traffic…
|
-
|
CVE-2024-39534
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310052
|
5.5 |
MEDIUM
Local
|
-
|
-
|
An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the command-line interface (CLI) of Juniper Networks Junos OS on SRX Series devices allows a local, low-privileged user …
|
CWE-200
Information Exposure
|
CVE-2024-39527
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310053
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX3…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2024-39526
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310054
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'skipto' shortcode in all versions up to, and including, 11.9.18 due to …
|
CWE-79
Cross-site Scripting
|
CVE-2024-9543
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310055
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The ShopLentor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.8 via the 'render' function in includes/addons/wl_faq.php. This makes it …
|
CWE-200
Information Exposure
|
CVE-2024-9538
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310056
|
- |
|
-
|
-
|
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to arbitrary file read in all versions u…
|
CWE-20
Improper Input Validation
|
CVE-2024-9507
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310057
|
6.1 |
MEDIUM
Network
|
-
|
-
|
The PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without …
|
CWE-79
Cross-site Scripting
|
CVE-2024-9436
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310058
|
6.1 |
MEDIUM
Network
|
-
|
-
|
The Embed videos and respect privacy plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'v' parameter in all versions up to, and including, 1.2 due to insufficient input san…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9346
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310059
|
- |
|
-
|
-
|
The GutenKit – Page Builder Blocks, Patterns, and Templates for Gutenberg Block Editor plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the install_an…
|
CWE-862
Missing Authorization
|
CVE-2024-9234
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310060
|
6.1 |
MEDIUM
Network
|
-
|
-
|
The Download Plugins and Themes in ZIP from Dashboard plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in a…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9232
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
