ZONE.CI 全球网

The Events Calendar <= 6.6.4 - Unauthenticated SQL Injection (CVE-2024-8275)CVE编

Prisna GWT - Google 网站翻译 <= 1.4.11 - 已通过身份验证 (Admin+) PHP 对象注入 (CVE-2024-8514)CV

ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in

SmartSearchWP < 2.4.6 - Unauthenticated OpenAI Key Disclosure (CVE-2024-6845)CVE

WP ULike < 4.7.4 - Admin+ Stored XSS (CVE-2024-7878)CVE编号
CVE-2024-7878利用情况
暂无

adstxt Plugin <= 1.0.0 - Settings Update via CSRF (CVE-2024-7892)CVE编号
CVE-2024

myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give

Ninja Forms Contact Form <= 3.8.15 - Reflected Self-Based Cross-Site Scripting v

Revolut Gateway for WooCommerce <= 4.17.3 - Missing Authorization to Unauthentic

WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listing

Apache Answer: Avatar URL leaked user email addresses (CVE-2024-40761)CVE编号
CVE

Apache Hadoop: Temporary File Local Information Disclosure (CVE-2024-23454)CVE编号

WordPress Elementor Addons by Livemesh plugin <= 8.5 - Cross Site Scripting (XSS

HT Mega – Absolute Addons For Elementor <= 2.6.5 - Authenticated (Contributor+)

litespeed cache <= 6.4.1 - Authenticated (Administrator+) Stored Cross-Site Scri

error handling in x86 IOMMU identity mapping (CVE-2024-31145)CVE编号
CVE-2024-311

CODESYS: web server vulnerable to DoS (CVE-2024-8175)CVE编号
CVE-2024-8175利用情况
暂

PCI device pass-through with shared resources (CVE-2024-31146)CVE编号
CVE-2024-31

Improper signature verification of VPN driver installation in TeamViewer Remote

x86: Deadlock in vlapic_error() (CVE-2024-45817)CVE编号
CVE-2024-45817利用情况
暂无补丁情

Improper signature verification of Printer driver installation in TeamViewer Rem

Elementor Addons by Livemesh <= 8.5 - Authenticated (Contributor+) Stored Cross-

Kastle Systems 访问控制系统中使用硬编码凭证 (CVE-2024-45861)CVE编号
CVE-2024-45861利用情况
暂无补丁情况

N/ACVE编号
CVE-2024-45752利用情况
暂无补丁情况 N/A披露时间 2024-09-20漏洞描述logiops版本低于或等于0.3.4的默

CodeCanyon CRMGo SaaS 显示跨站点脚本（CVE-2024-9031）CVE编号
CVE-2024-9031利用情况
暂无补丁情况 N/A