THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

CVE

Welcome

This is a FREE service that contains information on publicly disclosed Cybersecurity vulnerabilities based on data from the CVE® Program, please see the official CVE website and CVE List V5 on GitHub.

New

CVE-2024-5686
WPZOOM Addons for Elementor (Templates, Widgets) <= 1.1.38 - Authenticated (Contributor+) Stored Cross-Site Scripting via Team Members Widget: The WPZOOM A...
CVE-2024-4390
Depicter <= 3.0.2 - Authenticated (Contributor+) Arbitrary Nonce Generation: The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable ...
CVE-2024-5605
Media Library Assistant <= 3.16 - Authenticated (Contributor+) SQL Injection via order Parameter: The Media Library Assistant plugin for WordPress is vulne...
CVE-2024-5213
Exposure of Sensitive Information in mintplex-labs/anything-llm: In mintplex-labs/anything-llm versions up to and including 1.5.3, an issue was discovered ...
CVE-2024-3562
Custom Field Suite <= 2.6.7 - Authenticated (Contributor+) PHP Code Injection via Loop Custom Field: The Custom Field Suite plugin for WordPress is vulnera...

Updated

CVE-2024-5686
WPZOOM Addons for Elementor (Templates, Widgets) <= 1.1.38 - Authenticated (Contributor+) Stored Cross-Site Scripting via Team Members Widget: The WPZOOM A...
CVE-2024-4390
Depicter <= 3.0.2 - Authenticated (Contributor+) Arbitrary Nonce Generation: The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable ...
CVE-2024-5605
Media Library Assistant <= 3.16 - Authenticated (Contributor+) SQL Injection via order Parameter: The Media Library Assistant plugin for WordPress is vulne...
CVE-2024-6179
XSS vulnerability in LG SuperSign CMS: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LG Electronics...
CVE-2024-6178
XSS vulnerability in LG SuperSign CMS: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LG Electronics...
Share this page
https://cve.threatint.com/