NA - CVE-2024-5211 - A path traversal vulnerability in...
A path traversal vulnerability in mintplex-labs/anything-llm allowed a manager to bypass the `normalizePath()` function, intended to defend against path traversal attacks. This vulnerability...
NA - CVE-2024-5313 - CWE-668: Exposure of the Resource Wrong Sphere...
CWE-668: Exposure of the Resource Wrong Sphere vulnerability exists that exposes a SSH interface over the product network interface. This does not allow to directly exploit the product or make any...
Medium - CVE-2024-3559 - The Custom Field Suite plugin for WordPress is...
The Custom Field Suite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the the 'cfs[post_content]' parameter versions up to, and including, 2.6.7 due to insufficient...
NA - CVE-2024-0427 - The ARForms - Premium WordPress Form Builder...
The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.4.1 does not properly escape user-controlled input when it is reflected in some of its AJAX actions.
NA - CVE-2024-36454 - Use of uninitialized resource issue exists in...
Use of uninitialized resource issue exists in IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and earlier, and IPCOM VE2 Series V01L07NF0201 and earlier. If this vulnerability is exploited, the...
NA - CVE-2024-4924 - The Social Sharing Plugin WordPress plugin...
The Social Sharing Plugin WordPress plugin before 3.3.63 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site...
Medium - CVE-2024-5892 - The Divi Torque Lite – Divi Theme and Extra...
The Divi Torque Lite – Divi Theme and Extra Theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘support_unfiltered_files_upload’ function in all versions up to, and...
NA - CVE-2024-0160 - Dell Client Platform contains an incorrect...
Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization...
NA - CVE-2024-28970 - Dell Client BIOS contains an Out-of-bounds...
Dell Client BIOS contains an Out-of-bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to platform denial...