|
309351
|
6.1 |
MEDIUM
Network
|
orbisius
|
child_theme_creator
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Svetoslav Marinov (Slavi) Child Theme Creator allows Reflected XSS.This issue affects Chil…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43276
|
2024-09-18 05:00 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309352
|
5.4 |
MEDIUM
Network
|
cpothemes
|
allegiant
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Chill Allegiant allegiant allows Stored XSS.This issue affects Allegiant: from n/a thro…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43329
|
2024-09-18 04:59 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309353
|
6.1 |
MEDIUM
Network
|
wpbeaveraddons
|
powerpack_lite_for_beaver_builder
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack for Beaver Builder allows Reflected XSS.This issue affects Pow…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43330
|
2024-09-18 04:53 |
2024-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309354
|
6.5 |
MEDIUM
Network
|
mozilla
|
firefox
firefox_esr
thunderbird
|
ANGLE failed to initialize parameters which lead to reading from uninitialized memory. This could be leveraged to leak sensitive data from memory. This vulnerability affects Firefox < 129, Firefox ES…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-7526
|
2024-09-18 04:15 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309355
|
5.4 |
MEDIUM
Network
|
mayurik
|
best_house_rental_management_system
|
A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file /index.php?page=tenants of the componen…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8610
|
2024-09-18 03:48 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309356
|
9.8 |
CRITICAL
Network
|
dlink
|
dir-x4860_firmware
|
The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execu…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-45695
|
2024-09-18 03:40 |
2024-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309357
|
9.8 |
CRITICAL
Network
|
dlink
|
dir-x5460_firmware
dir-x4860_firmware
|
The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execu…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2024-45694
|
2024-09-18 03:40 |
2024-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309358
|
- |
|
-
|
-
|
Rejected reason: This CVE is a duplicate of another CVE.
|
-
|
CVE-2024-45804
|
2024-09-18 03:15 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309359
|
6.5 |
MEDIUM
Network
|
bitapps
|
bit_form
|
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Bit Apps Bit Form Pro.This issue affects Bit Form Pro: from n/a through 2.6.4.
|
NVD-CWE-noinfo
|
CVE-2024-43251
|
2024-09-18 03:10 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309360
|
9.6 |
CRITICAL
Network
|
joplin_project
|
joplin
|
Joplin is a free, open source note taking and to-do application. Joplin fails to take into account that "<" followed by a non letter character will not be considered html. As such it is possible to d…
|
CWE-79
Cross-site Scripting
|
CVE-2024-40643
|
2024-09-18 03:03 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
