Total
6931 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-36113 | 1 Discourse | 1 Discourse | 2024-11-21 | N/A | 4.9 MEDIUM |
|
Discourse is an open-source discussion platform. Prior to version 3.2.3 on the `stable` branch, version 3.3.0.beta3 on the `beta` branch, and version 3.3.0.beta4-dev on the `tests-passed` branch, a rogue staff user could suspend other staff users preventing them from logging in to the site. The issue is patched in version 3.2.3 on the `stable` branch, version 3.3.0.beta3 on the `beta` branch, and version 3.3.0.beta4-dev on the `tests-passed` branch. No known workarounds are available.
|
|||||
| CVE-2024-35748 | 1 Opmc | 1 Woocommerce Dropshipping | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in OPMC WooCommerce Dropshipping.This issue affects WooCommerce Dropshipping: from n/a through 5.0.4.
|
|||||
| CVE-2024-35742 | 1 Codeparrots | 1 Easy Forms For Mailchimp | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0.
|
|||||
| CVE-2024-35741 | 1 Getawesomesupport | 1 Awesome Support | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.7.
|
|||||
| CVE-2024-35735 | 1 Codepeople | 1 Wp Time Slots Booking Form | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form.This issue affects WP Time Slots Booking Form: from n/a through 1.2.11.
|
|||||
| CVE-2024-35729 | 1 Tickera | 1 Tickera | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in Tickera.This issue affects Tickera: from n/a through 3.5.2.6.
|
|||||
| CVE-2024-35727 | 1 Actpro | 1 Extra Product Options For Woocommerce | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in actpro Extra Product Options for WooCommerce.This issue affects Extra Product Options for WooCommerce: from n/a through 3.0.6.
|
|||||
| CVE-2024-35726 | 1 Themekraft | 1 Buddypress Woocommerce My Account Integration. Create Woocommerce Member Pages | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.19.
|
|||||
| CVE-2024-35725 | 1 La-studioweb | 1 Element Kit For Elementor | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in LA-Studio LA-Studio Element Kit for Elementor.This issue affects LA-Studio Element Kit for Elementor: from n/a through 1.3.6.
|
|||||
| CVE-2024-35724 | 1 Bosathemes | 1 Bosa Elementor Addons And Templates For Woocommerce | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in Bosa Themes Bosa Elementor Addons and Templates for WooCommerce.This issue affects Bosa Elementor Addons and Templates for WooCommerce: from n/a through 1.0.12.
|
|||||
| CVE-2024-35723 | 1 Arwebdesign | 1 Dashboard To-do List | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in Andrew Rapps Dashboard To-Do List.This issue affects Dashboard To-Do List: from n/a through 1.2.0.
|
|||||
| CVE-2024-35722 | 1 Awplife | 1 Slider Responsive Slideshow | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in A WP Life Slider Responsive Slideshow – Image slider, Gallery slideshow.This issue affects Slider Responsive Slideshow – Image slider, Gallery slideshow: from n/a through 1.4.0.
|
|||||
| CVE-2024-35721 | 1 Awplife | 1 Image Gallery | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in A WP Life Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery.This issue affects Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery: from n/a through 1.4.5.
|
|||||
| CVE-2024-35720 | 1 Awplife | 1 Album Gallery | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in A WP Life Album Gallery – WordPress Gallery.This issue affects Album Gallery – WordPress Gallery: from n/a through 1.5.7.
|
|||||
| CVE-2024-35717 | 1 Awplife | 1 Media Slider | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in A WP Life Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal Slideshow.This issue affects Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal Slideshow: from n/a through 1.3.9.
|
|||||
| CVE-2024-35716 | 1 Copymatic | 1 Copymatic | 2024-11-21 | N/A | 6.5 MEDIUM |
|
Missing Authorization vulnerability in Copymatic Copymatic – AI Content Writer & Generator.This issue affects Copymatic – AI Content Writer & Generator: from n/a through 1.9.
|
|||||
| CVE-2024-35692 | 1 Termly | 1 Gdpr Cookie Consent Banner | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in Termly Cookie Consent.This issue affects Cookie Consent: from n/a through 3.2.
|
|||||
| CVE-2024-35685 | 2024-11-21 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Anders Norén Radcliffe 2.This issue affects Radcliffe 2: from n/a through 2.0.17.
|
|||||
| CVE-2024-35683 | 2024-11-21 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Teplitsa of social technologies Leyka.This issue affects Leyka: from n/a through 3.31.1.
|
|||||
| CVE-2024-35674 | 1 Unlimited-elements | 1 Unlimited Elements For Elementor | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates).This issue affects Unlimited Elements For Elementor (Free Widgets, Addons, Templates): from n/a through 1.5.109.
|
|||||
| CVE-2024-35672 | 1 Netgsm | 1 Netgsm | 2024-11-21 | N/A | 7.5 HIGH |
|
Missing Authorization vulnerability in Netgsm.This issue affects Netgsm: from n/a through 2.9.19.
|
|||||
| CVE-2024-35671 | 2024-11-21 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Minoji MJ Update History.This issue affects MJ Update History: from n/a through 1.0.4.
|
|||||
| CVE-2024-35667 | 2024-11-21 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in WP EasyCart.This issue affects WP EasyCart: from n/a through 5.5.19.
|
|||||
| CVE-2024-35665 | 2024-11-21 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in namithjawahar Insert Post Ads.This issue affects Insert Post Ads: from n/a through 1.3.2.
|
|||||
| CVE-2024-35663 | 2024-11-21 | N/A | 5.4 MEDIUM | ||
|
Missing Authorization vulnerability in HahnCreativeGroup WP Translate.This issue affects WP Translate: from n/a through 5.3.0.
|
|||||
| CVE-2024-35662 | 1 83pixel | 1 Simple Cod Fees For Woocommerce | 2024-11-21 | N/A | 5.4 MEDIUM |
|
Missing Authorization vulnerability in Andreas Sofantzis Simple COD Fees for WooCommerce.This issue affects Simple COD Fees for WooCommerce: from n/a through 2.0.2.
|
|||||
| CVE-2024-35661 | 1 Softlabbd | 1 Upload Fields For Wpforms | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in SoftLab Upload Fields for WPForms.This issue affects Upload Fields for WPForms: from n/a through 1.0.2.
|
|||||
| CVE-2024-35237 | 2024-11-21 | N/A | 7.5 HIGH | ||
|
MIT IdentiBot is an open-source Discord bot written in Node.js that verifies individuals' affiliations with MIT, grants them roles in a Discord server, and stores information about them in a database backend. A vulnerability that exists prior to commit 48e3e5e7ead6777fa75d57c7711c8e55b501c24e impacts all users who have performed verification with an instance of MIT IdentiBot that meets the following conditions: The instance of IdentiBot is tied to a "public" Discord application—i.e., users other ...
Show More |
|||||
| CVE-2024-35174 | 2024-11-21 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Flothemes Flo Forms.This issue affects Flo Forms: from n/a through 1.0.42.
|
|||||
| CVE-2024-35168 | 2024-11-21 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Discourse WP Discourse.This issue affects WP Discourse: from n/a through 2.5.1.
|
|||||
| CVE-2024-34826 | 2024-11-21 | N/A | 6.3 MEDIUM | ||
|
Missing Authorization vulnerability in Tobias Conrad Design for Contact Form 7 Style WordPress Plugin – CF7 WOW Styler.This issue affects Design for Contact Form 7 Style WordPress Plugin – CF7 WOW Styler: from n/a through 1.6.4.
|
|||||
| CVE-2024-34824 | 1 Themeboy | 1 Sportspress | 2024-11-21 | N/A | 4.3 MEDIUM |
|
Missing Authorization vulnerability in ThemeBoy SportsPress – Sports Club & League Manager.This issue affects SportsPress – Sports Club & League Manager: from n/a through 2.7.20.
|
|||||
| CVE-2024-34822 | 1 Wedevs | 1 Wemail | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in weDevs weMail.This issue affects weMail: from n/a through 1.14.2.
|
|||||
| CVE-2024-34821 | 1 Contactlistpro | 1 Contact List | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in Contact List PRO Contact List – Easy Business Directory, Staff Directory and Address Book Plugin.This issue affects Contact List – Easy Business Directory, Staff Directory and Address Book Plugin: from n/a through 2.9.87.
|
|||||
| CVE-2024-34820 | 2024-11-21 | N/A | 6.5 MEDIUM | ||
|
Missing Authorization vulnerability in If So Plugin If-So Dynamic Content Personalization.This issue affects If-So Dynamic Content Personalization: from n/a through 1.7.1.
|
|||||
| CVE-2024-34819 | 1 Moreconvert | 1 Woocommerce Wishlist | 2024-11-21 | N/A | 5.3 MEDIUM |
|
Missing Authorization vulnerability in MoreConvert MC Woocommerce Wishlist.This issue affects MC Woocommerce Wishlist: from n/a through 1.7.2.
|
|||||
| CVE-2024-34815 | 2024-11-21 | N/A | 5.4 MEDIUM | ||
|
Missing Authorization vulnerability in Codection Import and export users and customers.This issue affects Import and export users and customers: from n/a through 1.26.5.
|
|||||
| CVE-2024-34813 | 2024-11-21 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in MoreConvert MC Woocommerce Wishlist.This issue affects MC Woocommerce Wishlist: from n/a through 1.7.8.
|
|||||
| CVE-2024-34804 | 2024-11-21 | N/A | 5.4 MEDIUM | ||
|
Missing Authorization vulnerability in Tagembed.This issue affects Tagembed: from n/a through 5.8.
|
|||||
| CVE-2024-34803 | 2024-11-21 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Fastly.This issue affects Fastly: from n/a through 1.2.25.
|
|||||