|
2861
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Missing Authorization vulnerability in weDevs WP User Frontend wp-user-frontend allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP User Frontend: from n/a t…
|
CWE-862
Missing Authorization
|
CVE-2026-24364
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2862
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Vulnerabilidad de autorización faltante en weDevs WP User Frontend wp-user-frontend permite Explotar Niveles de Seguridad de Control de Acceso Configurados Incorrectamente. Este problema afecta a WP …
|
CWE-862
Missing Authorization
|
CVE-2026-24364
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2863
|
7.1 |
HIGH
Network
|
-
|
-
|
Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through < 2.8.0.
|
CWE-862
Missing Authorization
|
CVE-2026-24369
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2864
|
7.1 |
HIGH
Network
|
-
|
-
|
Vulnerabilidad de autorización faltante en Theme-one The Grid the-grid permite explotar niveles de seguridad de control de acceso incorrectamente configurados. Este problema afecta a The Grid: desde …
|
CWE-862
Missing Authorization
|
CVE-2026-24369
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2865
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Theme-one The Grid the-grid allows Stored XSS.This issue affects The Grid: from n/a through < 2.8…
|
CWE-79
Cross-site Scripting
|
CVE-2026-24370
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2866
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Neutralización Incorrecta de la Entrada Durante la Generación de Páginas Web ('cross-site scripting') vulnerabilidad en Theme-one The Grid the-grid permite XSS Almacenado. Este problema afecta a The …
|
CWE-79
Cross-site Scripting
|
CVE-2026-24370
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2867
|
7.5 |
HIGH
Network
|
-
|
-
|
Authentication Bypass by Spoofing vulnerability in WP Swings Subscriptions for WooCommerce subscriptions-for-woocommerce allows Input Data Manipulation.This issue affects Subscriptions for WooCommerc…
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2026-24372
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2868
|
7.5 |
HIGH
Network
|
-
|
-
|
Vulnerabilidad de omisión de autenticación por suplantación en WP Swings Subscriptions for WooCommerce subscriptions-for-woocommerce permite la manipulación de datos de entrada. Este problema afecta …
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2026-24372
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2869
|
8.1 |
HIGH
Network
|
-
|
-
|
Incorrect Privilege Assignment vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Privilege Escalation.This issue affects RegistrationMagic: …
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2026-24373
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2870
|
8.1 |
HIGH
Network
|
-
|
-
|
Vulnerabilidad de Asignación Incorrecta de Privilegios en Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager permite escalada de privilegios. Este problema afecta a …
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2026-24373
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
