CVE List - 2024 / May
Showing 3001 - 3100 of 4997 CVEs for May 2024 (Page 31 of 50)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-3134 | 2024-05-16 | Master Addons for Elementor <= 2.0.6.0 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2024-30060 | 2024-05-16 | Azure Monitor Agent Elevation of Privilege Vulnerability |
| CVE-2024-34058 | 2024-05-17 | The WebTop package for NethServer 7 and 8 allows stored... |
| CVE-2024-34997 | 2024-05-17 | joblib v1.4.2 was discovered to contain a deserialization vulnerability via... |
| CVE-2024-3551 | 2024-05-17 | Penci Soledad Data Migrator <= 1.3.0 - Unauthenticated Local File Inclusion |
| CVE-2024-34757 | 2024-05-17 | WordPress Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin <= 1.5.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-2697 | 2024-05-17 | Swift Framework < 2024.0.0 - Contributor+ Stored XSS via Shortcode |
| CVE-2024-2744 | 2024-05-17 | Nextgen Gallery < 3.59.1 - Admin+ Stored XSS |
| CVE-2024-3231 | 2024-05-17 | Popup4Phone <= 1.3.2 - Unauthenticated Stored XSS |
| CVE-2024-3580 | 2024-05-17 | Popup4Phone <= 1.3.2 - Editor+ Stored XSS |
| CVE-2024-34752 | 2024-05-17 | WordPress Landing Page Builder <= 1.5.1.8 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-34575 | 2024-05-17 | WordPress DethemeKit For Elementor plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-34567 | 2024-05-17 | WordPress Easy Notify Lite plugin <= 1.1.29 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-32800 | 2024-05-17 | WordPress Popup – Popup More Popups plugin <= 2.3.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-33556 | 2024-05-17 | WordPress XStore Core plugin <= 5.3.8 - Limited Arbitrary File Upload vulnerability |
| CVE-2024-31351 | 2024-05-17 | WordPress Copymatic plugin <= 1.6 - Unauthenticated Arbitrary File Upload vulnerability |
| CVE-2022-44581 | 2024-05-17 | WordPress Defender Security plugin <= 3.3.2 - Broken Authentication vulnerability |
| CVE-2022-45070 | 2024-05-17 | WordPress Conditional Checkout Fields for WooCommerce plugin <= 1.2.3 - Broken Authentication vulnerability |
| CVE-2022-45368 | 2024-05-17 | WordPress 1003 Mortgage Application plugin <= 1.75 - Local File Inclusion |
| CVE-2022-45374 | 2024-05-17 | WordPress Yet Another Related Posts Plugin (YARPP) plugin <= 5.30.4 - Local File Inclusion |
| CVE-2023-23645 | 2024-05-17 | WordPress MainWP Code Snippets Extension Plugin <= 4.0.2 - Subscriber+ Arbitrary PHP Code Injection/Execution Vulnerability |
| CVE-2023-23700 | 2024-05-17 | WordPress OceanWP theme <= 3.4.1 - Authenticated Local File Inclusion vulnerability |
| CVE-2023-23872 | 2024-05-17 | WordPress GMAce plugin <= 1.5.2 - Arbitrary File Download vulnerability |
| CVE-2023-23888 | 2024-05-17 | WordPress Rank Math SEO plugin <= 1.0.107.2 - Local File Inclusion vulnerability |
| CVE-2023-23988 | 2024-05-17 | WordPress My Tickets plugin <= 1.9.11 - Payment Bypass Vulnerability |
| CVE-2023-23990 | 2024-05-17 | WordPress Redirection for Contact Form 7 plugin <= 2.7.0 - Privilege Escalation vulnerability |
| CVE-2023-24379 | 2024-05-17 | WordPress Landing Page Builder – Free Landing Page Templates plugin <= 3.1.9.9 - Local File Inclusion vulnerability |
| CVE-2023-25050 | 2024-05-17 | WordPress Shortcodes Ultimate plugin <= 5.12.6 - Arbitrary File Download vulnerability |
| CVE-2023-25444 | 2024-05-17 | WordPress JS Help Desk – Best Help Desk & Support Plugin plugin <= 2.7.7 - Arbitrary File Upload vulnerability |
| CVE-2023-25701 | 2024-05-17 | WordPress WatchTowerHQ plugin <= 3.6.16 - Privilege Escalation |
| CVE-2023-26009 | 2024-05-17 | WordPress Houzez Login Register plugin <= 2.6.3 - Privilege Escalation |
| CVE-2023-26526 | 2024-05-17 | WordPress Bookly plugin <= 21.7.1 - Authenticated Arbitrary File Deletion vulnerability |
| CVE-2023-26540 | 2024-05-17 | WordPress Houzez theme <= 2.7.1 - Privilege Escalation |
| CVE-2023-32110 | 2024-05-17 | WordPress JupiterX theme <= 3.0.0 - Auth. Local File Inclusion vulnerability |
| CVE-2023-32129 | 2024-05-17 | WordPress Editorialmag theme <= 1.1.9 - Authenticated Arbitrary Plugin Activation |
| CVE-2023-32244 | 2024-05-17 | WordPress Woodmart Core plugin <= 1.0.36 - Privilege Escalation |
| CVE-2023-32297 | 2024-05-17 | WordPress LWS Affiliation plugin <= 2.2.6 - Local File Inclusion vulnerability |
| CVE-2023-33310 | 2024-05-17 | WordPress Unite Gallery Lite plugin <= 1.7.59 - Local File Inclusion vulnerability |
| CVE-2023-33321 | 2024-05-17 | WordPress EventPrime plugin <= 2.8.6 - Sensitive Data Exposure |
| CVE-2023-34186 | 2024-05-17 | WordPress Headless CMS plugin <= 2.0.3 - Broken Authentication vulnerability |
| CVE-2023-35881 | 2024-05-17 | WordPress WooCommerce One Page Checkout plugin <= 2.3.0 - Local File Inclusion vulnerability |
| CVE-2023-37385 | 2024-05-17 | WordPress Consulting theme <= 6.5.6 - Local File Inclusion |
| CVE-2023-37389 | 2024-05-17 | WordPress Booking Package SAASPROJECT plugin <= 1.5.98 - Unauthenticated Privilege Escalation vulnerability |
| CVE-2023-37866 | 2024-05-17 | WordPress JetFormBuilder plugin <= 3.0.8 - Authenticated Privilege Escalation vulnerability |
| CVE-2023-37888 | 2024-05-17 | WordPress Phlox Core Elements plugin <= 2.14.0 - Unauthenticated Local File Inclusion vulnerability |
| CVE-2023-37999 | 2024-05-17 | WordPress HT Mega Absolute Addons for Elementor plugin <= 2.2.0 - Unauthenticated Privilege Escalation vulnerability |
| CVE-2023-38399 | 2024-05-17 | WordPress Phlox Portfolio plugin <= 2.3.1 - Unauthenticated Local File Inclusion vulnerability |
| CVE-2023-39163 | 2024-05-17 | WordPress Phlox Shop plugin <= 2.0.0 - Unauthenticated Local File Inclusion vulnerability |
| CVE-2023-41243 | 2024-05-17 | WordPress WPvivid Backup Plugin plugin <= 0.9.90 - Privilege Escalation on Staging Environment vulnerability |
| CVE-2023-41665 | 2024-05-17 | WordPress GiveWP plugin <= 2.33.0 - GiveWP Manager+ Privilege Escalation vulnerability |
| CVE-2023-41954 | 2024-05-17 | WordPress ProfilePress plugin <= 4.13.1 - Unauthenticated Limited Privilege Escalation vulnerability |
| CVE-2023-41955 | 2024-05-17 | WordPress Essential Addons for Elementor plugin <= 5.8.8 - Contributor+ Privilege Escalation vulnerability |
| CVE-2023-41956 | 2024-05-17 | WordPress Simple Membership plugin <= 4.3.4 - Authenticated Account Takeover vulnerability |
| CVE-2023-41957 | 2024-05-17 | WordPress Simple Membership plugin <= 4.3.4 - Unauthenticated Membership Role Privilege Escalation vulnerability |
| CVE-2024-35110 | 2024-05-17 | A reflected XSS vulnerability has been found in YzmCMS 7.1.... |
| CVE-2024-34434 | 2024-05-17 | WordPress MDTF – Meta Data and Taxonomies Filter plugin <= 1.3.3.2 - Arbitrary Shortcode Execution vulnerability |
| CVE-2024-34370 | 2024-05-17 | WordPress EAN for WooCommerce plugin <= 4.8.9 - Arbitrary Option Update to Privilege Escalation vulnerability |
| CVE-2024-33917 | 2024-05-17 | WordPress WTI Like Post plugin <= 1.4.6 - IP Restriction Bypass Vulnerability vulnerability |
| CVE-2024-33644 | 2024-05-17 | WordPress Customify Site Library plugin <= 0.0.9 - Remote Code Execution (RCE) vulnerability |
| CVE-2024-33569 | 2024-05-17 | WordPress Instant Images plugin <= 6.1.0 - Arbitrary Option Update to Privilege Escalation vulnerability |
| CVE-2024-33567 | 2024-05-17 | WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.3 - Unauthenticated Privilege Escalation vulnerability |
| CVE-2024-33552 | 2024-05-17 | WordPress XStore Core plugin <= 5.3.8 - Unauthenticated Account Takeover vulnerability |
| CVE-2024-33550 | 2024-05-17 | WordPress WP Masquerade plugin <= 1.1.0 - Authenticated Account Takeover vulnerability |
| CVE-2024-33549 | 2024-05-17 | WordPress WZone plugin <= 14.0.10 - Privilege Escalation vulnerability |
| CVE-2024-32790 | 2024-05-17 | WordPress Pricing Table by Supsystic plugin <= 1.9.12 - Content Injection vulnerability |
| CVE-2024-32131 | 2024-05-17 | WordPress Download Manager plugin <= 3.2.82 - File Password Lock Bypass vulnerability |
| CVE-2024-31341 | 2024-05-17 | WordPress User Profile Builder plugin <= 3.11.2 - Bypass Vulnerability vulnerability |
| CVE-2024-31295 | 2024-05-17 | WordPress Captcha by BestWebSoft plugin <= 5.2.0 - Captcha Bypass vulnerability |
| CVE-2024-30540 | 2024-05-17 | WordPress VS Contact Form plugin <= 14.7 - Sum Captcha Bypass vulnerability |
| CVE-2024-30527 | 2024-05-17 | WordPress WP Express Checkout plugin <= 2.3.7 - Price Manipulation vulnerability |
| CVE-2024-30522 | 2024-05-17 | WordPress Newsletter plugin <= 8.2.0 - IP Blacklist Bypass vulnerability |
| CVE-2024-30480 | 2024-05-17 | WordPress CGC Maintenance Mode plugin <= 1.2 - IP Filtering Bypass vulnerability |
| CVE-2024-30479 | 2024-05-17 | WordPress LionScripts: IP Blocker Lite plugin <= 11.1.1 - Bypass vulnerability |
| CVE-2024-25906 | 2024-05-17 | WordPress Comments Like Dislike plugin <= 1.2.2 - IP Restriction Bypass Vulnerability vulnerability |
| CVE-2024-25595 | 2024-05-17 | WordPress Defender Security plugin <= 4.4.1 - IP Restriction Bypass vulnerability |
| CVE-2024-24874 | 2024-05-17 | WordPress Polls CP plugin <= 1.0.71 - Content Injection vulnerability |
| CVE-2024-24873 | 2024-05-17 | WordPress Polls CP plugin <= 1.0.71 - Polls Limitation Bypass vulnerability |
| CVE-2023-44478 | 2024-05-17 | WordPress Events Rich Snippets for Google plugin <= 1.8 - CSRF Leading to Privilege Escalation vulnerability |
| CVE-2024-4789 | 2024-05-17 | Cost Calculator Builder Pro <= 3.1.72 - Authenticated (Subscriber+) Server-Side Request Forgery |
| CVE-2023-45652 | 2024-05-17 | WordPress Remote Content Shortcode plugin <= 1.5 - Local File Inclusion vulnerability |
| CVE-2023-46145 | 2024-05-17 | WordPress Themify Ultra theme <= 7.3.5 - Authenticated Privilege Escalation vulnerability |
| CVE-2023-46197 | 2024-05-17 | WordPress Popup by Supsystic plugin <= 1.10.19 - Unauthenticated Subscriber Email Addresses Disclosure |
| CVE-2023-46205 | 2024-05-17 | WordPress Ultimate Addons for WPBakery Page Builder plugin <= 3.19.14 - Local File Inclusion vulnerability |
| CVE-2023-46784 | 2024-05-17 | WordPress ICS Calendar plugin <= 10.12.0.3 - SSRF and Arbitrary File Read vulnerability |
| CVE-2023-47178 | 2024-05-17 | WordPress The Plus Addons for Elementor Pro plugin <= 5.2.8 - Unauthenticated Local File Inclusion vulnerability |
| CVE-2023-47679 | 2024-05-17 | WordPress Qi Addons For Elementor plugin <= 1.6.3 - Local File Inclusion vulnerability |
| CVE-2023-47682 | 2024-05-17 | WordPress WP User Frontend plugin <= 3.6.5 - Authenticated Privilege Escalation vulnerability |
| CVE-2023-47683 | 2024-05-17 | WordPress Social Login, Social Sharing by miniOrange plugin <= 7.6.6 - Authenticated Privilege Escalation vulnerability |
| CVE-2023-47782 | 2024-05-17 | WordPress Thrive Theme Builder theme < 3.24.0 - Authenticated Privilege Escalation vulnerability |
| CVE-2023-47868 | 2024-05-17 | WordPress wpForo plugin <= 2.2.3 - Privilege Escalation vulnerability |
| CVE-2023-48319 | 2024-05-17 | WordPress Salon booking system plugin < 8.7 - Editor+ Privilege Escalation vulnerability |
| CVE-2023-48757 | 2024-05-17 | WordPress JetEngine plugin <= 3.2.4 - Privilege Escalation vulnerability |
| CVE-2023-49753 | 2024-05-17 | WordPress Adifier System plugin < 3.1.4 - Local File Inclusion vulnerability |
| CVE-2023-50890 | 2024-05-17 | WordPress Ultimate Addons for Elementor plugin <= 1.36.20 - Privilege Escalation vulnerability |
| CVE-2023-51356 | 2024-05-17 | WordPress ARMember plugin <= 4.0.10 - Privilege Escalation vulnerability |
| CVE-2023-51398 | 2024-05-17 | WordPress Ultimate Addons for Beaver Builder Premium plugin <= 1.35.14 - Privilege Escalation vulnerability |
| CVE-2023-51401 | 2024-05-17 | WordPress Ultimate Addons for Beaver Builder Premium plugin <= 1.35.13 - Limited Arbitrary File Download vulnerability |
| CVE-2023-51424 | 2024-05-17 | WordPress WebinarIgnition plugin <= 3.05.0 - Unauthenticated Privilege Escalation vulnerability |
| CVE-2023-51476 | 2024-05-17 | WordPress WP MLM Unilevel plugin <= 4.0 - Unauthenticated Account Takeover vulnerability |
| CVE-2023-51479 | 2024-05-17 | WordPress Build App Online plugin <= 1.0.19 - Authenticated Privilege Escalation vulnerability |