CVE-2024-23833 | OpenRefine prior 3.7.8 JDBC Remote Code Execution
A vulnerability was found in OpenRefine. It has been rated as critical. This issue affects some unknown processing of the component JDBC Handler. The manipulation leads to Remote Code Execution.
The identification of this vulnerability is CVE-2024-238…
CVE-2024-25108 | pixelfed prior 0.11.11 API insufficient permissions or privileges
A vulnerability was found in pixelfed. It has been declared as critical. This vulnerability affects unknown code of the component API. The manipulation leads to improper handling of insufficient permissions or privileges.
This vulnerability was named …
CVE-2024-25360 | Motorola CX2L Router 1.0.1 SystemWizardStatus device_web_ip information disclosure
A vulnerability was found in Motorola CX2L Router 1.0.1. It has been classified as problematic. This affects the function device_web_ip of the component SystemWizardStatus. The manipulation leads to information disclosure.
This vulnerability is unique…
CVE-2024-0420 | MapPress Maps Plugin prior 2.88.15 on WordPress Admin Dashboard Map Title cross site scripting
A vulnerability was found in MapPress Maps Plugin on WordPress and classified as problematic. Affected by this issue is some unknown functionality of the component Admin Dashboard. The manipulation of the argument Map Title leads to cross site scriptin…
CVE-2023-7233 | GigPress Plugin up to 2.3.29 on WordPress Setting cross site scripting
A vulnerability has been found in GigPress Plugin up to 2.3.29 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Setting Handler. The manipulation leads to cross site scripting.
Thi…
CVE-2023-6591 | Popup Box Plugin up to 20.8.x on WordPress Setting cross site scripting
A vulnerability, which was classified as problematic, was found in Popup Box Plugin up to 20.8.x on WordPress. Affected is an unknown function of the component Setting Handler. The manipulation leads to cross site scripting.
This vulnerability is trad…
CVE-2024-0566 | Smart Manager Plugin up to 8.27.x on WordPress sql injection
A vulnerability, which was classified as critical, has been found in Smart Manager Plugin up to 8.27.x on WordPress. This issue affects some unknown processing. The manipulation leads to sql injection.
The identification of this vulnerability is CVE-2…
CVE-2024-0421 | MapPress Maps Plugin prior 2.88.16 on WordPress AJAX authorization
A vulnerability classified as critical was found in MapPress Maps Plugin on WordPress. This vulnerability affects unknown code of the component AJAX Handler. The manipulation leads to missing authorization.
This vulnerability was named CVE-2024-0421. …
CVE-2023-6294 | Popup Builder Plugin up to 4.2.5 on WordPress server-side request forgery
A vulnerability classified as critical has been found in Popup Builder Plugin up to 4.2.5 on WordPress. This affects an unknown part. The manipulation leads to server-side request forgery.
This vulnerability is uniquely identified as CVE-2023-6294. Th…