High - CVE-2024-1094 - The Timetics- AI-powered Appointment Booking...
The Timetics- AI-powered Appointment Booking with Visual Seat Plan and ultimate Calendar Scheduling plugin for WordPress is vulnerable to unauthorized modification of data due to a missing...
NA - CVE-2024-3496 - Attackers can bypass the web login...
Attackers can bypass the web login authentication process to gain access to the printer's system information and upload malicious drivers to the printer. As for the affected...
NA - CVE-2024-3497 - Path traversal vulnerability in the web server...
Path traversal vulnerability in the web server of the Toshiba printer enables attacker to overwrite orginal files or add new ones to the printer. As for the affected products/models/versions, see...
NA - CVE-2024-3498 - Attackers can then execute malicious files by...
Attackers can then execute malicious files by enabling certain services of the printer via the web configuration page and elevate its privileges to root. As for the affected...
Critical - CVE-2024-4936 - The Canto plugin for WordPress is vulnerable to...
The Canto plugin for WordPress is vulnerable to Remote File Inclusion in all versions up to, and including, 3.0.8 via the abspath parameter. This makes it possible for unauthenticated attackers to...
NA - CVE-2023-51497 - Missing Authorization vulnerability in Woo...
Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9.