NA - CVE-2023-51376 - Missing Authorization vulnerability in...
Missing Authorization vulnerability in Brainstorm Force ProjectHuddle Client Site.This issue affects ProjectHuddle Client Site: from n/a through 1.0.34.
NA - CVE-2024-36459 - A CRLF cross-site scripting vulnerability has...
A CRLF cross-site scripting vulnerability has been identified in certain configurations of the SiteMinder Web Agent for IIS Web Server and SiteMinder Web Agent for Domino Web Server. As a result,...
Medium - CVE-2024-2023 - The Folders and Folders Pro plugin for...
The Folders and Folders Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.0 in Folders and 3.0.2 in Folders Pro via the...
High - CVE-2024-2024 - The Folders Pro plugin for WordPress is...
The Folders Pro plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'handle_folders_file_upload' function in all versions up to, and...
NA - CVE-2024-24320 - Directory Traversal vulnerability in...
Directory Traversal vulnerability in Mgt-commerce CloudPanel v.2.0.0 thru v.2.4.0 allows a remote attacker to obtain sensitive information and execute arbitrary code via the service parameter of...
NA - CVE-2024-36599 - A cross-site scripting (XSS) vulnerability in...
A cross-site scripting (XSS) vulnerability in Aegon Life v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name parameter at insertClient.php.
NA - CVE-2024-37888 - The Open Link is a CKEditor plugin, extending...
The Open Link is a CKEditor plugin, extending context menu with a possibility to open link in a new tab. The vulnerability allowed to execute JavaScript code by abusing link href attribute. It...