Total
6931 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-38727 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Seraphinite Solutions Seraphinite Post .DOCX Source allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Seraphinite Post .DOCX Source: from n/a through 2.16.9.
|
|||||
| CVE-2024-38743 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Access Control vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows .
This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0.
|
|||||
| CVE-2024-37926 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Alex Volkov WP Accessibility Helper (WAH) allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WP Accessibility Helper (WAH): from n/a through 0.6.2.9.
|
|||||
| CVE-2024-37203 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Laybuy Laybuy Payment Extension for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Laybuy Payment Extension for WooCommerce: from n/a through 5.3.9.
|
|||||
| CVE-2024-43122 | 2024-11-01 | N/A | 6.5 MEDIUM | ||
|
Missing Authorization vulnerability in Creative Motion Robin image optimizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Robin image optimizer: from n/a through 1.6.9.
|
|||||
| CVE-2024-37250 | 2024-11-01 | N/A | 5.4 MEDIUM | ||
|
Missing Authorization vulnerability in WPEngine Inc. Advanced Custom Fields PRO allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Custom Fields PRO: from n/a through 6.3.1.
|
|||||
| CVE-2024-38737 | 2024-11-01 | N/A | 5.4 MEDIUM | ||
|
Missing Authorization vulnerability in Reservation Diary ReDi Restaurant Reservation allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReDi Restaurant Reservation: from n/a through 24.0422.
|
|||||
| CVE-2024-43146 | 2024-11-01 | N/A | 6.3 MEDIUM | ||
|
Missing Authorization vulnerability in Ahmed Kaludi, Mohammed Kaludi AMP for WP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AMP for WP: from n/a through 1.0.96.1.
|
|||||
| CVE-2024-38714 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Epsiloncool WP Fast Total Search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Fast Total Search: from n/a through 1.68.232.
|
|||||
| CVE-2024-43212 | 2024-11-01 | N/A | 7.5 HIGH | ||
|
Missing Authorization vulnerability in MagePeople Team WpTravelly allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WpTravelly: from n/a through 1.7.7.
|
|||||
| CVE-2024-38792 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in ConveyThis Translate Team Language Translate Widget for WordPress – ConveyThis allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Language Translate Widget for WordPress – ConveyThis: from n/a through 234.
|
|||||
| CVE-2024-38726 | 2024-11-01 | N/A | 7.5 HIGH | ||
|
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33.
|
|||||
| CVE-2024-43229 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Cornel Raiu WP Search Analytics allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Search Analytics: from n/a through 1.4.9.
|
|||||
| CVE-2024-38702 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Tyche Softwares Product Delivery Date for WooCommerce – Lite allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Delivery Date for WooCommerce – Lite: from n/a through 2.7.2.
|
|||||
| CVE-2024-38774 | 2024-11-01 | N/A | 5.4 MEDIUM | ||
|
Missing Authorization vulnerability in SiteGround SiteGround Security allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SiteGround Security: from n/a through 1.5.0.
|
|||||
| CVE-2024-37218 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in WordPress Page Builder Sandwich Team Page Builder Sandwich – Front-End Page Builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Page Builder Sandwich – Front-End Page Builder: from n/a through 5.1.0.
|
|||||
| CVE-2024-37095 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Envira Gallery Team Envira Photo Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Envira Photo Gallery: from n/a through 1.8.7.3.
|
|||||
| CVE-2024-38721 | 2024-11-01 | N/A | 7.1 HIGH | ||
|
Missing Authorization vulnerability in spider-themes EazyDocs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EazyDocs: from n/a through 2.5.0.
|
|||||
| CVE-2024-43277 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in AyeCode Ltd UsersWP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UsersWP: from n/a through 1.2.15.
|
|||||
| CVE-2024-43270 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in WPBackItUp Backup and Restore WordPress allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Backup and Restore WordPress: from n/a through 1.50.
|
|||||
| CVE-2024-43143 | 2024-11-01 | N/A | 6.4 MEDIUM | ||
|
Missing Authorization vulnerability in Roundup WP Registrations for the Events Calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Registrations for the Events Calendar: from n/a through 2.12.1.
|
|||||
| CVE-2024-43208 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Miller Media ( Matt Miller ) Send Emails with Mandrill allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Send Emails with Mandrill: from n/a through 1.4.1.
|
|||||
| CVE-2024-37468 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in blazethemes Newsmatic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Newsmatic: from n/a through 1.3.1.
|
|||||
| CVE-2024-38695 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Martin Gibson WP GoToWebinar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP GoToWebinar: from n/a through 15.6.
|
|||||
| CVE-2024-37207 | 2024-11-01 | N/A | 5.4 MEDIUM | ||
|
Missing Authorization vulnerability in Theme4Press Demo Awesome allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Demo Awesome: from n/a through 1.0.2.
|
|||||
| CVE-2024-37123 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in VowelWeb Ibtana allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ibtana: from n/a through 1.2.3.3.
|
|||||
| CVE-2024-37096 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Popup Box Team Popup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup box: from n/a through 4.5.1.
|
|||||
| CVE-2024-43290 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Atarim allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Atarim: from n/a through 4.0.1.
|
|||||
| CVE-2024-37506 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Charitable Donations & Fundraising Team Charitable allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Charitable: from n/a through 1.8.1.7.
|
|||||
| CVE-2024-37106 | 2024-11-01 | N/A | 8.2 HIGH | ||
|
Missing Authorization vulnerability in WishList Products WishList Member X allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WishList Member X: from n/a through 3.26.6
|
|||||
| CVE-2024-39654 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Fetch Designs Sign-up Sheets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sign-up Sheets: from n/a through 2.2.12.
|
|||||
| CVE-2024-37214 | 2024-11-01 | N/A | 6.5 MEDIUM | ||
|
Missing Authorization vulnerability in Dropshipping Guru Ali2Woo Lite Exploiting Incorrectly Configured Access Control Security Levels, Stored XSS.This issue affects Ali2Woo Lite: from n/a through 3.3.5.
|
|||||
| CVE-2024-38771 | 2024-11-01 | N/A | 6.5 MEDIUM | ||
|
Missing Authorization vulnerability in Atarim allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Atarim: from n/a through 4.0.
|
|||||
| CVE-2024-37482 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Post Grid Team by RadiusTheme The Post Grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Post Grid: from n/a through 7.7.4.
|
|||||
| CVE-2024-38690 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Avirtum iPanorama 360 WordPress Virtual Tour Builder allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects iPanorama 360 WordPress Virtual Tour Builder: from n/a through 1.8.3.
|
|||||
| CVE-2024-38744 | 2024-11-01 | N/A | 8.3 HIGH | ||
|
Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing Functionality Not Properly Constrained by ACLs, Stored XSS.This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0.
|
|||||
| CVE-2024-37456 | 2024-11-01 | N/A | 5.3 MEDIUM | ||
|
Missing Authorization vulnerability in Noptin Newsletter Noptin allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Noptin: from n/a through 3.4.2.
|
|||||
| CVE-2024-37209 | 2024-11-01 | N/A | 6.5 MEDIUM | ||
|
Access Control vulnerability in Prism IT Systems User Rights Access Manager allows .
This issue affects User Rights Access Manager: from n/a through 1.1.2.
|
|||||
| CVE-2024-37443 | 2024-11-01 | N/A | 4.3 MEDIUM | ||
|
Missing Authorization vulnerability in Automattic WP Job Manager - Resume Manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Manager - Resume Manager: from n/a through 2.1.0.
|
|||||
| CVE-2024-43268 | 2024-11-01 | N/A | 5.4 MEDIUM | ||
|
Access Control vulnerability in WPBackItUp Backup and Restore WordPress allows .
This issue affects Backup and Restore WordPress: from n/a through 1.50.
|
|||||