CVE List - 2024 / May

Showing 1801 - 1900 of 4997 CVEs for May 2024 (Page 19 of 50)

Back to List Previous Next

CVE ID	Date	Title
CVE-2024-4647	2024-05-08	Campcodes Complete Web-Based School Management System student_first_payment.php cross site scripting
CVE-2024-4648	2024-05-08	Campcodes Complete Web-Based School Management System student_exam_mark_update_form.php cross site scripting
CVE-2024-1438	2024-05-08	WordPress Rolo Slider plugin <= 1.0.9 - Broken Access Control vulnerability
CVE-2024-4233	2024-05-08	Broken Access Control vulnerability in multiple WordPress plugins by Tyche Softwares
CVE-2024-30459	2024-05-08	WordPress AI WP Writer plugin <= 3.6.5 - Broken Access Control vulnerability
CVE-2024-31270	2024-05-08	WordPress ARForms Form Builder plugin <= 1.6.1 - Broken Access Control vulnerability
CVE-2024-24833	2024-05-08	WordPress Happy Addons for Elementor plugin <= 3.10.1 - Broken Access Control on Post Clone vulnerability
CVE-2024-4649	2024-05-08	Campcodes Complete Web-Based School Management System student_exam_mark_insert_form1.php cross site scripting
CVE-2024-4650	2024-05-08	Campcodes Complete Web-Based School Management System student_due_payment.php cross site scripting
CVE-2024-33574	2024-05-08	WordPress Vitepos plugin <= 3.0.1 - Broken Access Control vulnerability
CVE-2024-33573	2024-05-08	WordPress EPROLO Dropshipping plugin <= 1.7.1 - Broken Access Control vulnerability
CVE-2024-4651	2024-05-08	Campcodes Complete Web-Based School Management System student_attendance_history1.php cross site scripting
CVE-2024-4652	2024-05-08	Campcodes Complete Web-Based School Management System show_teacher2.php cross site scripting
CVE-2024-32886	2024-05-08	Vitess vulnerable to infinite memory consumption and vtgate crash
CVE-2024-34347	2024-05-08	@hoppscotch/cli affected by Sandbox Escape in @hoppscotch/js-sandbox leads to RCE
CVE-2024-4653	2024-05-08	BlueNet Technology Clinical Browsing System outIndex.php sql injection
CVE-2024-32980	2024-05-08	Spin contains a potential network sandbox escape for specifically configured Spin applications
CVE-2024-3951	2024-05-08	Cross-site Scripting in PTC Codebeamer
CVE-2024-32113	2024-05-08	Apache OFBiz: Path traversal leading to RCE
CVE-2024-4654	2024-05-08	BlueNet Technology Clinical Browsing System cloudInterface.php sql injection
CVE-2024-28883	2024-05-08	BIG-IP APM browser network access VPN client vulnerability
CVE-2024-33608	2024-05-08	BIG-IP IPsec vulnerability
CVE-2024-25560	2024-05-08	TMM Vulnerability
CVE-2024-27202	2024-05-08	BIG-IP TMUI XSS vulnerability
CVE-2024-32049	2024-05-08	BIG-IP Next Central Manager vulnerability
CVE-2024-28889	2024-05-08	BIG-IP SSL vulnerability
CVE-2024-28132	2024-05-08	BIG-IP NEXT CNF vulnerability
CVE-2024-33604	2024-05-08	BIG-IP Configuration utility XSS vulnerability
CVE-2024-31156	2024-05-08	BIG-IP Configuration utility XSS vulnerability
CVE-2024-33612	2024-05-08	BIG-IP Next Central Manager vulnerability
CVE-2024-21793	2024-05-08	BIG-IP Central Manager OData Injection Vulnerability
CVE-2024-26026	2024-05-08	BIG-IP Central Manager SQL Injection
CVE-2024-32761	2024-05-08	BIG-IP TMM tenants on VELOS and rSeries vulnerability
CVE-2024-26579	2024-05-08	Apache Inlong JDBC Vulnerability
CVE-2024-24788	2024-05-08	Malformed DNS message can cause infinite loop in net
CVE-2024-24787	2024-05-08	Arbitrary code execution during build on Darwin in cmd/go
CVE-2024-28971	2024-05-08	Dell Update Manager Plugin, versions 1.4.0 through 1.5.0, contains a...
CVE-2024-24908	2024-05-08	Dell PowerProtect DM5500 version 5.15.0.0 and prior contain an Arbitrary...
CVE-2024-22460	2024-05-08	Dell PowerProtect DM5500 version 5.15.0.0 and prior contains an insecure...
CVE-2024-28759	2024-05-08	A crafted network packet may cause a buffer overrun in...
CVE-2024-34308	2024-05-08	TOTOLINK LR350 V9.3.5u.6369_B20220309 was discovered to contain a stack overflow...
CVE-2024-27282	2024-05-08	An issue was discovered in Ruby 3.x through 3.3.0. If...
CVE-2024-27280	2024-05-08	A buffer-overread issue was discovered in StringIO 3.0.1, as distributed...
CVE-2024-27281	2024-05-08	An issue was discovered in RDoc 6.3.3 through 6.6.2, as...
CVE-2024-26517	2024-05-08	SQL Injection vulnerability in School Task Manager v.1.0 allows a...
CVE-2024-34196	2024-05-08	Totolink AC1200 Wireless Dual Band Gigabit Router A3002RU_V3 Firmware V3.0.0-B20230809.1615...
CVE-2024-27793	2024-05-08	The issue was addressed with improved checks. This issue is...
CVE-2024-30171	2024-05-09	An issue was discovered in Bouncy Castle Java TLS API...
CVE-2024-30172	2024-05-09	An issue was discovered in Bouncy Castle Java Cryptography APIs...
CVE-2024-4597	2024-05-09	Cross-Site Request Forgery (CSRF) in GitLab
CVE-2024-4539	2024-05-09	Allocation of Resources Without Limits or Throttling in GitLab
CVE-2024-2651	2024-05-09	Inefficient Regular Expression Complexity in GitLab
CVE-2024-2454	2024-05-09	Allocation of Resources Without Limits or Throttling in GitLab
CVE-2023-6688	2024-05-09	Inefficient Regular Expression Complexity in GitLab
CVE-2023-6682	2024-05-09	Inefficient Regular Expression Complexity in GitLab
CVE-2024-4672	2024-05-09	Campcodes Complete Web-Based School Management System show_student_subject.php cross site scripting
CVE-2024-29857	2024-05-09	An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy...
CVE-2023-5971	2024-05-09	Save as PDF < 3.2.0 - Admin+ Stored XSS
CVE-2024-3582	2024-05-09	Ungallery <= 2.2.4 - Stored XSS via CSRF
CVE-2024-3590	2024-05-09	LetterPress <= 1.2.2 - Subscriber Deletion via CSRF
CVE-2024-3903	2024-05-09	Add Custom CSS and JS <= 1.20 - Stored XSS via CSRF
CVE-2024-32669	2024-05-09	Possible stack overflow due to a string encoding processing error
CVE-2024-3016	2024-05-09	NEC Platforms DT900 and DT900S Series 5.0.0.0 – v5.3.4.4, v5.4.0.0...
CVE-2024-34365	2024-05-09	Apache Karaf Cave: Cave SSRF and arbitrary file access
CVE-2024-32672	2024-05-09	A Segmentation Fault issue discovered in Samsung Open Source Escargot...
CVE-2024-4423	2024-05-09	Authentication bypass in CemiPark
CVE-2024-4424	2024-05-09	Stored XSS in CemiPark
CVE-2024-4425	2024-05-09	Storing credentials in plaintext in CemiPark
CVE-2024-4673	2024-05-09	Campcodes Complete Web-Based School Management System show_student_grade_subject.php cross site scripting
CVE-2024-3459	2024-05-09	KioWare for Windows (versions all through 8.34) allows to escape...
CVE-2024-3460	2024-05-09	In KioWare for Windows (versions all through 8.34) it is...
CVE-2024-3461	2024-05-09	KioWare for Windows (versions all through 8.35) allows to brute...
CVE-2024-4674	2024-05-09	Campcodes Complete Web-Based School Management System show_friend_request.php cross site scripting
CVE-2024-34445	2024-05-09	WordPress SKT Addons for Elementor plugin <= 1.8 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34441	2024-05-09	WordPress Easy Affiliate Links plugin <= 3.7.2 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34437	2024-05-09	WordPress Form Maker by 10Web plugin <= 1.15.24 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34436	2024-05-09	WordPress SKT Addons for Elementor plugin <= 1.8 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34432	2024-05-09	WordPress Better Elementor Addons plugin <= 1.4.4 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34431	2024-05-09	WordPress WP etracker plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability
CVE-2024-34430	2024-05-09	WordPress TT Custom Post Type Creator plugin <=1.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34429	2024-05-09	WordPress Simple Website Banner plugin <= 1.8.0.2 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34428	2024-05-09	WordPress AWSOM News Announcement plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34426	2024-05-09	WordPress Brozzme Scroll Top plugin <= 1.8.5 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34425	2024-05-09	WordPress QuickieBar plugin <= 1.8.4 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34424	2024-05-09	WordPress Featured Content Gallery plugin <= 3.2.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34423	2024-05-09	WordPress Forty Four – 404 Plugin for WordPress plugin <= 1.4 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34422	2024-05-09	WordPress Viet Affiliate Link plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34421	2024-05-09	WordPress BlogLentor – Blog Designer Pack for Elementor plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34420	2024-05-09	WordPress Comments Evolved for WordPress plugin <= 1.6.3 - Cross Site Scripting (XSS) vulnerability
CVE-2024-4675	2024-05-09	Campcodes Complete Web-Based School Management System show_events.php cross site scripting
CVE-2024-34419	2024-05-09	WordPress Configure Login Timeout plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34418	2024-05-09	WordPress WPCS ( WordPress Custom Search ) plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34417	2024-05-09	WordPress Viet Nam Affiliate plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability
CVE-2024-34415	2024-05-09	WordPress Thim Elementor Kit plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerability
CVE-2024-29800	2024-05-09	WordPress Timber plugin <= 1.23.0 - Deserialization of untrusted data vulnerability
CVE-2024-34557	2024-05-09	WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Cross Site Request Forgery (CSRF) vulnerability
CVE-2024-34427	2024-05-09	WordPress WP Favorite Posts plugin <= 1.6.8 - Cross Site Request Forgery (CSRF) vulnerability
CVE-2024-34439	2024-05-09	WordPress DS Site Message plugin <= 1.14.4 - Cross Site Request Forgery (CSRF) vulnerability
CVE-2024-4606	2024-05-09	WordPress Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder plugin <= 2.0.3 - PHP Object Injection vulnerability
CVE-2024-34433	2024-05-09	WordPress One Click Demo Import plugin <=3.2.0 - PHP Object Injection vulnerability