CVE List - 2024 / August
Showing 901 - 1000 of 2898 CVEs for August 2024 (Page 10 of 29)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-43358 | 2024-08-12 | XSS vulnerability in filter view |
| CVE-2024-43359 | 2024-08-12 | XSS vulnerabilities in montagereview |
| CVE-2024-43360 | 2024-08-12 | ZoneMinder Time-based SQL Injection |
| CVE-2024-43233 | 2024-08-12 | WordPress BSK Forms Blacklist plugin <= 3.8 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43231 | 2024-08-12 | WordPress Tutor LMS plugin <= 2.7.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43227 | 2024-08-12 | WordPress BetterDocs – Best Documentation, FAQ & Knowledge Base Plugin with AI Support & Instant Answer for Elementor & Gutenberg plugin <= 3.5.8 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43226 | 2024-08-12 | WordPress WP Dashboard Notes plugin <= 1.0.11 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43225 | 2024-08-12 | WordPress Enter Addons plugin <= 2.1.7 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43224 | 2024-08-12 | WordPress YaMaps for WordPress Plugin plugin <= 0.6.27 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43220 | 2024-08-12 | WordPress Form Maker by 10Web plugin <= 1.15.26 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43218 | 2024-08-12 | WordPress Mediavine Control Panel plugin <= 2.10.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43217 | 2024-08-12 | WordPress Kodex Posts likes plugin <= 2.5.0 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43216 | 2024-08-12 | WordPress Filr – Secure document library plugin <= 1.2.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43213 | 2024-08-12 | WordPress MultiVendorX Marketplace plugin <= 4.1.17 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43210 | 2024-08-12 | WordPress LA-Studio Element Kit for Elementor plugin <= 1.3.9.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2023-7066 | 2024-08-12 | Siemens Teamcenter Visualization and JT2Go Out-of-bounds Read |
| CVE-2024-7590 | 2024-08-12 | WordPress Spectra – WordPress Gutenberg Blocks plugin<= 2.14.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43164 | 2024-08-12 | WordPress Blockspare plugin <= 3.2.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43163 | 2024-08-12 | WordPress ParcelPanel plugin <= 4.3.2 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43161 | 2024-08-12 | WordPress Slider & Popup Builder by Depicter plugin <= 3.1.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43156 | 2024-08-12 | WordPress Post Grid Master plugin <= 3.4.10 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43155 | 2024-08-12 | WordPress ComboBlocks plugin <= 2.2.86 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43152 | 2024-08-12 | WordPress 3D FlipBook plugin <= 1.15.6 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43151 | 2024-08-12 | WordPress Ultimate Addons for Beaver Builder – Lite plugin <= 1.5.9 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43150 | 2024-08-12 | WordPress Xpro Elementor Addons plugin <= 1.4.4.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43149 | 2024-08-12 | WordPress CM Tooltip Glossary Plugin <= 4.3.7 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43148 | 2024-08-12 | WordPress StreamCast <= 2.2.3 - Stored Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43147 | 2024-08-12 | WordPress Selection Lite plugin <= 1.11 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43139 | 2024-08-12 | WordPress Football Pool plugin <= 2.11.9 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43137 | 2024-08-12 | WordPress WappPress Basic plugin <= 6.0.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43133 | 2024-08-12 | WordPress Themify Shortcodes plugin <= 2.1.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43130 | 2024-08-12 | WordPress Football Pool plugin <= 2.11.10 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-7705 | 2024-08-12 | Fujian mwcms Image Upload uploadeditor.html uploadeditor unrestricted upload |
| CVE-2024-7706 | 2024-08-12 | Fujian mwcms uploadfile.html uploadimage unrestricted upload |
| CVE-2024-43127 | 2024-08-12 | WordPress Products, Order & Customers Export for WooCommerce plugin <= 2.0.11 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43126 | 2024-08-12 | WordPress Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce plugin <= 2.6.14 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43125 | 2024-08-12 | WordPress WP Table Builder plugin <= 1.4.15 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43124 | 2024-08-12 | WordPress Graphina plugin <= 1.8.10 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-43123 | 2024-08-12 | WordPress Card Elements for Elementor plugin <= 1.2.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-35775 | 2024-08-12 | WordPress Slider by Soliloquy plugin <= 2.7.6 - Broken Access Control to XSS vulnerability |
| CVE-2024-37924 | 2024-08-12 | WordPress WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin <= 1.0.1 - Sensitive Data Exposure vulnerability |
| CVE-2024-37930 | 2024-08-12 | WordPress SmartMag theme <= 9.3.0 - Sensitive Data Exposure via Log File vulnerability |
| CVE-2024-37015 | 2024-08-13 | An issue was discovered in Ada Web Server 20.0. When... |
| CVE-2024-41613 | 2024-08-13 | A Cross Site Scripting (XSS) vulnerability in Symphony CMS 2.7.10... |
| CVE-2024-41711 | 2024-08-13 | A vulnerability in the Mitel 6800 Series, 6900 Series, and... |
| CVE-2024-42736 | 2024-08-13 | In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS... |
| CVE-2024-42737 | 2024-08-13 | In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS... |
| CVE-2024-42738 | 2024-08-13 | In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS... |
| CVE-2024-42739 | 2024-08-13 | In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS... |
| CVE-2024-42740 | 2024-08-13 | In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS... |
| CVE-2024-36446 | 2024-08-13 | The provisioning manager component of Mitel MiVoice MX-ONE through 7.6... |
| CVE-2024-41614 | 2024-08-13 | symphonycms <=2.7.10 is vulnerable to Cross Site Scripting (XSS) in... |
| CVE-2024-41623 | 2024-08-13 | An issue in D3D Security D3D IP Camera (D8801) v.V9.1.17.1.4-20180428... |
| CVE-2024-7707 | 2024-08-13 | Tenda FH1206 HTTP POST Request SafeEmailFilter formSafeEmailFilter stack-based overflow |
| CVE-2024-7709 | 2024-08-13 | OcoMon URL require_access_recovery.php cross site scripting |
| CVE-2022-38382 | 2024-08-13 | IBM Cloud Pak for Security session fixation |
| CVE-2024-7388 | 2024-08-13 | WP Bannerize Pro <= 1.9.0 - Authenticated (Editor+) Stored Cross-Site Scripting |
| CVE-2024-7094 | 2024-08-13 | JS Help Desk – The Ultimate Help Desk & Support Plugin <= 2.8.6 - Unauthenticated PHP Code Injection to Remote Code Execution |
| CVE-2024-41730 | 2024-08-13 | Missing Authentication check in SAP BusinessObjects Business Intelligence Platform |
| CVE-2024-42374 | 2024-08-13 | XML injection in SAP BEx Web Java Runtime Export Web Service |
| CVE-2024-33003 | 2024-08-13 | Information Disclosure Vulnerability in SAP Commerce Cloud |
| CVE-2024-42376 | 2024-08-13 | Multiple Missing Authorization Check vulnerabilities in SAP Shared Service Framework |
| CVE-2024-42377 | 2024-08-13 | Multiple Missing Authorization Check vulnerabilities in SAP Shared Service Framework |
| CVE-2024-33005 | 2024-08-13 | Missing Authorization check in SAP NetWeaver Application Server (ABAP and Java),SAP Web Dispatcher and SAP Content Server |
| CVE-2024-41735 | 2024-08-13 | Cross-Site Scripting (XSS) vulnerability in SAP Commerce Backoffice |
| CVE-2024-41733 | 2024-08-13 | Information Disclosure Vulnerability in SAP Commerce |
| CVE-2024-41737 | 2024-08-13 | Server-Side Request Forgery (SSRF) in SAP CRM ABAP (Insights Management) |
| CVE-2024-41732 | 2024-08-13 | Improper Access Control in SAP Netweaver Application Server ABAP |
| CVE-2024-42375 | 2024-08-13 | Multiple Unrestricted File Upload vulnerabilities in SAP BusinessObjects Business Intelligence Platform |
| CVE-2024-28166 | 2024-08-13 | Multiple Unrestricted File Upload vulnerabilities in SAP BusinessObjects Business Intelligence Platform |
| CVE-2024-41731 | 2024-08-13 | Multiple Unrestricted File Upload vulnerabilities in SAP BusinessObjects Business Intelligence Platform |
| CVE-2024-41736 | 2024-08-13 | Information Disclosure vulnerability in SAP Permit to Work |
| CVE-2024-41734 | 2024-08-13 | Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform |
| CVE-2024-7092 | 2024-08-13 | Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.27 - Authenticated (Contributor+) Stored Cross-Site Scripting via no_more_items_text Parameter |
| CVE-2024-42373 | 2024-08-13 | Missing Authorization Check in SAP Student Life Cycle Management (SLcM) |
| CVE-2024-39591 | 2024-08-13 | Missing Authorization check in SAP Document Builder |
| CVE-2024-7247 | 2024-08-13 | Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Gallery and Countdown Widgets |
| CVE-2024-6823 | 2024-08-13 | Media Library Assistant <= 3.18 - Authenticated (Author+) Arbitrary File Upload via mla-inline-edit-upload-scripts AJAX Action |
| CVE-2024-6724 | 2024-08-13 | Generate Images – Magic Post Thumbnail < 5.2.8 - Admin+ Stored XSS |
| CVE-2024-7715 | 2024-08-13 | D-Link DNS-1550-04 photocenter_mgr.cgi sprintf command injection |
| CVE-2024-36398 | 2024-08-13 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2024-39922 | 2024-08-13 | A vulnerability has been identified in LOGO! 12/24RCE (6ED1052-1MD08-0BA1) (All... |
| CVE-2024-41681 | 2024-08-13 | A vulnerability has been identified in Location Intelligence family (All... |
| CVE-2024-41682 | 2024-08-13 | A vulnerability has been identified in Location Intelligence family (All... |
| CVE-2024-41683 | 2024-08-13 | A vulnerability has been identified in Location Intelligence family (All... |
| CVE-2024-41903 | 2024-08-13 | A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0)... |
| CVE-2024-41904 | 2024-08-13 | A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0)... |
| CVE-2024-41905 | 2024-08-13 | A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0)... |
| CVE-2024-41906 | 2024-08-13 | A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0)... |
| CVE-2024-41907 | 2024-08-13 | A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0)... |
| CVE-2024-41908 | 2024-08-13 | A vulnerability has been identified in NX (All versions <... |
| CVE-2024-41938 | 2024-08-13 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2024-41939 | 2024-08-13 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2024-41940 | 2024-08-13 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2024-41941 | 2024-08-13 | A vulnerability has been identified in SINEC NMS (All versions... |
| CVE-2024-41976 | 2024-08-13 | A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU... |
| CVE-2024-41977 | 2024-08-13 | A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU... |
| CVE-2024-41978 | 2024-08-13 | A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU... |
| CVE-2024-37935 | 2024-08-13 | WordPress Woocommerce OpenPos plugin <= 6.4.4 - Unauthenticated Sensitive Data Exposure vulnerability |
| CVE-2024-38699 | 2024-08-13 | WordPress Wallet System for WooCommerce plugin <= 2.5.13 - Sensitive Data Exposure via Exported File vulnerability |