CVE ID : CVE-2024-13512 Published : Jan. 30, 2025, 2:15 p.m. | 1 hour, 53 minutes ago Description : The Wonder FontAwesome plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.8. This is due to missing or incorrect nonce validation on one of its functions. This makes it possible […]
CVE ID : CVE-2024-13460 Published : Jan. 30, 2025, 2:15 p.m. | 1 hour, 53 minutes ago Description : The WE – Testimonial Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Testimonial Author Names in all versions up to, and including, 1.5 due to insufficient input sanitization and output escaping. This makes it possible […]
CVE ID : CVE-2024-13400 Published : Jan. 30, 2025, 2:15 p.m. | 1 hour, 53 minutes ago Description : The Kona Gallery Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the “Kona: Instagram for Gutenberg” Block, specifically in the “align” attribute, in all versions up to, and including, 1.7 due to insufficient input sanitization […]
The following table lists the changes that have been made to the CVE-2024-12822 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 30, 2025 Action […]
The following table lists the changes that have been made to the CVE-2024-12821 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 30, 2025 Action […]
The following table lists the changes that have been made to the CVE-2024-12129 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 30, 2025 Action […]
The MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the hubwoo_save_updates() function in all versions up to, and including, 1.5.9. This makes it possible for authenticated […]
The following table lists the changes that have been made to the CVE-2025-0869 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 30, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-0870 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 30, 2025 Action […]
CVE ID : CVE-2024-13466 Published : Jan. 30, 2025, 1:15 p.m. | 46 minutes ago Description : The Automatically Hierarchic Categories in Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘autocategorymenu’ shortcode in all versions up to, and including, 2.0.7 due to insufficient input sanitization and output escaping on user supplied […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
