CVE ID : CVE-2024-11930 Published : Jan. 4, 2025, 9:15 a.m. | 29 minutes ago Description : The Taskbuilder – WordPress Project & Task Management plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s wppm_tasks shortcode in all versions up to, and including, 3.0.6 due to insufficient input sanitization and output escaping […]
The following table lists the changes that have been made to the CVE-2025-0204 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 04, 2025 Action […]
CVE ID : CVE-2024-12545 Published : Jan. 4, 2025, 8:15 a.m. | 49 minutes ago Description : The Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals, sales and more plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.1. This is due to missing […]
CVE ID : CVE-2024-12701 Published : Jan. 4, 2025, 8:15 a.m. | 49 minutes ago Description : The WP Smart Import : Import any XML File to WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘ page’ parameter in all versions up to, and including, 1.1.2 due to insufficient input sanitization and […]
CVE ID : CVE-2024-12047 Published : Jan. 4, 2025, 8:15 a.m. | 49 minutes ago Description : The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘custom_server’ parameter in all versions up to, and including, 6.30.03 due to insufficient input sanitization and output escaping. This […]
CVE ID : CVE-2024-11974 Published : Jan. 4, 2025, 8:15 a.m. | 49 minutes ago Description : The Media Library Assistant plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘smc_settings_tab’, ‘unattachfixit-action’, and ‘woofixit-action’ parameters in all versions up to, and including, 3.23 due to insufficient input sanitization and output escaping. This makes it […]
CVE ID : CVE-2024-10932 Published : Jan. 4, 2025, 8:15 a.m. | 49 minutes ago Description : The Backup Migration plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.6 via deserialization of untrusted input in the ‘recursive_unserialize_replace’ function. This makes it possible for unauthenticated attackers to inject a […]
The following table lists the changes that have been made to the CVE-2025-0203 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 04, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-0202 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 04, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-0201 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 04, 2025 Action […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
