Skip to main content
CVE-2024-2387 MEDIUM This Month

The Advanced Form Integration - Connect WooCommerce and Contact Form 7 to Google Sheets and other platforms plugin for WordPress is vulnerable to SQL Injection via the ‘integration_id’ parameter in. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 36.6% and no vendor patch available.

SQLi Google WordPress
NVD VulDB
CVSS 3.1
6.1
EPSS
36.6%
CVE-2024-28562 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Imf_2_2::copyIntoFrameBuffer() component when reading images in EXR. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption Freeimage
NVD GitHub
CVSS 3.1
6.8
EPSS
0.5%
CVE-2024-2714 MEDIUM POC This Month

A vulnerability has been found in Campcodes Complete Online DJ Booking System 1.0 and classified as critical. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Complete Online Dj Booking System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.5%
CVE-2024-2687 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0 and classified as critical.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.6%
CVE-2024-2678 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0 and classified as critical. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.5%
CVE-2024-2677 MEDIUM POC This Month

A vulnerability has been found in Campcodes Online Job Finder System 1.0 and classified as critical. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.5%
CVE-2024-2676 MEDIUM POC This Month

A vulnerability, which was classified as critical, was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.5%
CVE-2024-2675 MEDIUM POC This Month

A vulnerability, which was classified as critical, has been found in Campcodes Online Job Finder System 1.0.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.5%
CVE-2024-2674 MEDIUM POC This Month

A vulnerability classified as critical was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.6%
CVE-2024-2673 MEDIUM POC This Month

A vulnerability classified as critical has been found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.6%
CVE-2024-2672 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.6%
CVE-2024-2671 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.6%
CVE-2024-2670 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.6%
CVE-2024-2669 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0 and classified as critical.php of the component GET Parameter Handler. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.6%
CVE-2024-2668 MEDIUM POC This Month

A vulnerability has been found in Campcodes Online Job Finder System 1.0 and classified as critical. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.5
EPSS
0.6%
CVE-2024-28579 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_Unload() function when reading images in HDR. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
6.2
EPSS
0.3%
CVE-2024-28575 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_read_mct() function when reading images in J2K. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stack Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
6.2
EPSS
0.3%
CVE-2024-28574 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_copy_default_tcp_and_create_tcd() function when. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stack Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
6.2
EPSS
0.3%
CVE-2024-28573 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile() function when reading images in. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stack Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
6.2
EPSS
0.3%
CVE-2024-28572 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_SetTagValue() function when reading images in JPEG. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Heap Overflow Buffer Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
6.2
EPSS
0.3%
CVE-2024-28568 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the read_iptc_profile() function when reading images in TIFF. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stack Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
6.2
EPSS
0.3%
CVE-2024-28567 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_CreateICCProfile() function when reading images in. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stack Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
6.2
EPSS
0.3%
CVE-2024-28564 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the Imf_2_2::CharPtrIO::readChars() function when reading images. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
6.2
EPSS
0.5%
CVE-2024-2720 MEDIUM POC This Month

A vulnerability classified as problematic was found in Campcodes Complete Online DJ Booking System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Complete Online Dj Booking System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2719 MEDIUM POC This Month

A vulnerability classified as problematic has been found in Campcodes Complete Online DJ Booking System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Complete Online Dj Booking System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.5%
CVE-2024-2718 MEDIUM POC This Month

A vulnerability was found in Campcodes Complete Online DJ Booking System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Complete Online Dj Booking System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.5%
CVE-2024-2717 MEDIUM POC This Month

A vulnerability was found in Campcodes Complete Online DJ Booking System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Complete Online Dj Booking System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.5%
CVE-2024-29473 MEDIUM POC This Month

OneBlog v2.3.4 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Role Management module. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oneblog
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-29470 MEDIUM POC This Month

{{rootpath}}/links. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oneblog
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-29469 MEDIUM POC This Month

A stored cross-site scripting (XSS) vulnerability in OneBlog v2.3.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category List parameter under the. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oneblog
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-2716 MEDIUM POC This Month

A vulnerability was found in Campcodes Complete Online DJ Booking System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Complete Online Dj Booking System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.5%
CVE-2024-2715 MEDIUM POC This Month

A vulnerability was found in Campcodes Complete Online DJ Booking System 1.0 and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Complete Online Dj Booking System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.5%
CVE-2024-2686 MEDIUM POC This Month

A vulnerability has been found in Campcodes Online Job Finder System 1.0 and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2685 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2684 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2683 MEDIUM POC This Month

A vulnerability classified as problematic was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2682 MEDIUM POC This Month

A vulnerability classified as problematic has been found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2681 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2680 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-2679 MEDIUM POC This Month

A vulnerability was found in Campcodes Online Job Finder System 1.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Online Job Finder System
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2024-0337 MEDIUM POC This Month

The Travelpayouts: All Travel Brands in One Place WordPress plugin through 1.1.15 is vulnerable to Open Redirect due to insufficient validation on the travelpayouts_redirect variable. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Open Redirect Travelpayouts
NVD WPScan
CVSS 3.1
6.1
EPSS
0.9%
CVE-2024-23634 MEDIUM POC PATCH This Month

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Java Denial Of Service Geoserver
NVD GitHub
CVSS 3.1
6.0
EPSS
0.7%
CVE-2024-28563 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the Imf_2_2::DwaCompressor::Classifier::Classifier() function. Rated medium severity (CVSS 5.9), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stack Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
5.9
EPSS
0.5%
CVE-2024-28577 MEDIUM POC This Month

Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile_raw() function when reading. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2024-28576 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_tcp_destroy() function when reading images in J2K. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2024-28571 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the fill_input_buffer() function when reading images in JPEG. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2024-28570 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the processMakerNote() function when reading images in JPEG. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2024-28565 MEDIUM POC This Month

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the psdParser::ReadImageData() function when reading images in. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Freeimage
NVD GitHub
CVSS 3.1
5.5
EPSS
0.4%
CVE-2024-2538 MEDIUM POC PATCH This Month

The Permalink Manager Lite plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajax_save_permalink' function in all versions up to, and. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Authentication Bypass WordPress Permalink Manager Lite
NVD GitHub VulDB
CVSS 3.1
5.4
EPSS
0.1%
CVE-2024-29474 MEDIUM POC This Month

OneBlog v2.3.4 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the User Management module. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oneblog
NVD
CVSS 3.1
5.4
EPSS
0.4%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy