Skip to main content
CVE-2024-5557 MEDIUM PATCH This Month

exposure of SNMP credentials when an attacker has access to the controller logs. Rated medium severity (CVSS 4.5), this vulnerability is low attack complexity.

Information Disclosure Spacelogic As B Firmware Spacelogic As P Firmware
NVD
CVSS 3.1
4.5
EPSS
0.2%
CVE-2024-1766 MEDIUM PATCH This Month

The Download Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a user's Display Name in all versions up to, and including, 3.2.86 due to insufficient input sanitization. Rated medium severity (CVSS 4.4), this vulnerability is remotely exploitable. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS WordPress Download Manager
NVD
CVSS 3.1
4.4
EPSS
0.5%
CVE-2024-5553 MEDIUM PATCH This Month

The Premium Addons for Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via several parameters in all versions up to, and including, 4.10.33 due to insufficient. Rated medium severity (CVSS 4.4), this vulnerability is remotely exploitable. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS WordPress Premium Addons For Elementor Elementor
NVD
CVSS 3.1
4.4
EPSS
0.4%
CVE-2024-4201 MEDIUM This Month

A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 5.1 before 16.10.7, all versions starting from 16.11 before 16.111.4, all versions starting from 17.0. Rated medium severity (CVSS 4.4), this vulnerability is remotely exploitable. No vendor patch available.

Gitlab XSS
NVD
CVSS 3.1
4.4
EPSS
0.5%
CVE-2024-28970 MEDIUM This Month

Dell Client BIOS contains an Out-of-bounds Write vulnerability. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Dell Denial Of Service Memory Corruption Vostro 5502 Firmware +13
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2023-47828 MEDIUM This Month

Missing Authorization vulnerability in Mandrill wpMandrill.33. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Mandrill
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2023-25030 MEDIUM This Month

Missing Authorization vulnerability in Buy Me a Coffee.7. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Buy Me A Coffee
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-5891 MEDIUM This Month

A vulnerability was found in Quay. Rated medium severity (CVSS 4.2), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Quay
NVD
CVSS 3.1
4.2
EPSS
0.2%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy