Export limit exceeded: 11088 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (11088 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-30544 | 1 Upqode | 1 Whizzy | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in UPQODE Whizzy.This issue affects Whizzy: from n/a through 1.1.18. | ||||
| CVE-2024-30539 | 1 Getawesomesupport | 1 Awesome Support | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.7. | ||||
| CVE-2024-30538 | 1 Delucks | 1 Delucks Seo | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in DELUCKS GmbH DELUCKS SEO.This issue affects DELUCKS SEO: from n/a through 2.5.4. | ||||
| CVE-2024-30537 | 1 Wpclever | 1 Wpc Badge Management For Woocommerce | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in WPClever WPC Badge Management for WooCommerce.This issue affects WPC Badge Management for WooCommerce: from n/a through 2.4.0. | ||||
| CVE-2024-30528 | 1 Spiffyplugins | 1 Spiffy Calendar | 2024-11-21 | 5.4 Medium |
| Missing Authorization vulnerability in Spiffy Plugins Spiffy Calendar.This issue affects Spiffy Calendar: from n/a through 4.9.10. | ||||
| CVE-2024-30525 | 1 Moveaddons | 1 Move Addons For Elementor | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in moveaddons Move Addons for Elementor.This issue affects Move Addons for Elementor: from n/a through 1.2.9. | ||||
| CVE-2024-30517 | 1 Slicedinvoices | 1 Sliced Invoices | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in Sliced Invoices.This issue affects Sliced Invoices: from n/a through 3.9.2. | ||||
| CVE-2024-30515 | 1 Pixelite | 1 Events Manager | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in Pixelite Events Manager.This issue affects Events Manager: from n/a through 6.4.6.4. | ||||
| CVE-2024-30512 | 1 Weformspro | 1 Weforms | 2024-11-21 | 3.7 Low |
| Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.20. | ||||
| CVE-2024-30484 | 1 Risethemes | 1 Rt Easy Builder | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in RT Easy Builder – Advanced addons for Elementor.This issue affects RT Easy Builder – Advanced addons for Elementor: from n/a through 2.0. | ||||
| CVE-2024-30470 | 1 Yithemes | 1 Woocommerce Account Funds | 2024-11-21 | 6.5 Medium |
| Missing Authorization vulnerability in YITH YITH WooCommerce Account Funds Premium.This issue affects YITH WooCommerce Account Funds Premium: from n/a through 1.33.0. | ||||
| CVE-2024-30467 | 1 Wpdeveloper | 1 Essential Blocks | 2024-11-21 | 6.5 Medium |
| Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg.This issue affects Essential Blocks for Gutenberg: from n/a through 4.4.9. | ||||
| CVE-2024-30466 | 1 Onthegosystems | 1 Woocommerce Multilingual \& Multicurrency | 2024-11-21 | 5.4 Medium |
| Missing Authorization vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through 5.3.4. | ||||
| CVE-2024-30465 | 1 Pagelayer | 1 Pagelayer | 2024-11-21 | 6.5 Medium |
| Missing Authorization vulnerability in Pagelayer Team PageLayer.This issue affects PageLayer: from n/a through 1.8.1. | ||||
| CVE-2024-2743 | 1 Gitlab | 1 Gitlab | 2024-11-21 | 5.3 Medium |
| An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that would allow an attacker to modify an on-demand DAST scan without permissions and leak variables. | ||||
| CVE-2024-25929 | 1 Multivendorx | 1 Product Catalog Mode For Woocommerce | 2024-11-21 | 6.5 Medium |
| Missing Authorization vulnerability in MultiVendorX Product Catalog Enquiry for WooCommerce by MultiVendorX.This issue affects Product Catalog Enquiry for WooCommerce by MultiVendorX: from n/a through 5.0.5. | ||||
| CVE-2024-25643 | 1 Sap | 1 Fiori | 2024-11-21 | 4.3 Medium |
| The SAP Fiori app (My Overtime Request) - version 605, does not perform the necessary authorization checks for an authenticated user which may result in an escalation of privileges. It is possible to manipulate the URLs of data requests to access information that the user should not have access to. There is no impact on integrity and availability. | ||||
| CVE-2024-25092 | 1 Xlplugins | 1 Nextmove | 2024-11-21 | 8.8 High |
| Missing Authorization vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.17.0. | ||||
| CVE-2024-24822 | 1 Pimcore | 1 Admin Classic Bundle | 2024-11-21 | 6.5 Medium |
| Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. Prior to version 1.3.3, an attacker can create, delete etc. tags without having the permission to do so. A fix is available in version 1.3.3. As a workaround, one may apply the patch manually. | ||||
| CVE-2024-24774 | 1 Mattermost | 1 Mattermost Server | 2024-11-21 | 3.4 Low |
| Mattermost Jira Plugin handling subscriptions fails to check the security level of an incoming issue or limit it based on the user who created the subscription resulting in registered users on Jira being able to create webhooks that give them access to all Jira issues. | ||||