CVE ID : CVE-2024-13224 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The SlideDeck 1 Lite Content Slider WordPress plugin through 1.4.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users […]
CVE ID : CVE-2024-13424 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The Ni Sales Commission For WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the ‘niwoosc_ajax’ AJAX endpoint in all versions up to, and including, 1.2.4. This makes it possible for […]
CVE ID : CVE-2024-13220 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The WordPress Google Map Professional (Map In Your Language) WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against […]
CVE ID : CVE-2024-13221 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The Fantastic ElasticSearch WordPress plugin through 4.1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. […]
CVE ID : CVE-2024-13219 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The Privacy Policy Genius WordPress plugin through 2.0.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as […]
CVE ID : CVE-2024-13415 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The Food Menu – Restaurant Menu & Online Ordering for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the response() function in all versions up to, and including, 5.1.4. This […]
CVE ID : CVE-2024-13226 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The A5 Custom Login Page WordPress plugin through 2.8.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such […]
CVE ID : CVE-2024-13225 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The ECT Home Page Products WordPress plugin through 1.9 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such […]
CVE ID : CVE-2024-13223 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The Tabulate WordPress plugin through 2.10.3 does not sanitise and escape some parameters before outputting them back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. Severity: […]
CVE ID : CVE-2024-13222 Published : Jan. 31, 2025, 6:15 a.m. | 2 hours, 38 minutes ago Description : The User Messages WordPress plugin through 1.2.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
