Critical - CVE-2024-11120 - Certain EOL GeoVision devices have an OS...
Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the...
NA - CVE-2024-10924 - The Really Simple Security (Free, Pro, and Pro...
The Really Simple Security (Free, Pro, and Pro Multisite) plugins for WordPress are vulnerable to authentication bypass in versions 9.0.0 to 9.1.1.1. This is due to improper user check error...
Medium - CVE-2024-10897 - The Tutor LMS Elementor Addons plugin for...
The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to unauthorized plugin installation due to a missing capability check on the install_etlms_dependency_plugin() function in all...
Medium - CVE-2024-9609 - The LearnPress Export Import – WordPress...
The LearnPress Export Import – WordPress extension for LearnPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'learnpress_import_form_server' parameter in...
Medium - CVE-2024-10113 - The WP AdCenter – Ad Manager & Adsense Ads...
The WP AdCenter – Ad Manager & Adsense Ads plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpadcenter_ad shortcode in all versions up to, and including,...