Aggregator

A vulnerability was found in Gallery 1.3.1/1.3.2/1.3.3/1.4/1.4.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument GALLERY_BASEDIR leads to file inclusion. This vulnerability is known as CVE-2004-2124. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in EU UK VAT Manager for WooCommerce Plugin up to 2.12.12 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-8788. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in WP-WebAuthn Plugin up to 1.3.1 on WordPress. It has been classified as problematic. This affects the function wwa_login_form of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-9023. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Simple LDAP Login Plugin up to 1.6.0 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-8715. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Simple Popup Plugin up to 4.5 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-8547. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in kalvinGit kvf-admin up to f12a94dc1ebb7d1c51ee978a85e4c7ed75c620ff. Affected is an unknown function of the file /ueditor/upload?configPath=ueditor/config.json&action=uploadfile of the component XML File Handler. The manipulation of the argument upfile leads to cross site scripting. This vulnerability is traded as CVE-2024-9291. It is possible to launch the attack remotely. Furthermore, there is an exploit available. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The GitHub repository of the project did not receive an update for more than two years.

A vulnerability classified as problematic has been found in SourceCodester Online Railway Reservation System 1.0. This affects an unknown part of the file /?page=reserve. The manipulation of the argument First Name/Middle Name/Last Name leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-9299. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

开源推荐之纯Python实现国密算法库gmalg，欢迎star和fork。

开源推荐之纯Python实现国密算法库gmalg，欢迎star和fork。

开源推荐之纯Python实现国密算法库gmalg，欢迎star和fork。

开源推荐之纯Python实现国密算法库gmalg，欢迎star和fork。

开源推荐之纯Python实现国密算法库gmalg，欢迎star和fork。

开源推荐之纯Python实现国密算法库gmalg，欢迎star和fork。

A vulnerability has been found in Ultimate Blocks Plugin up to 3.2.1 on WordPress and classified as problematic. This vulnerability affects unknown code of the component Block Attribute Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-8536. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in PLANET Technology GS-4210-24PL4C Hardware 2.0 and GS-4210-24P2S Hardware 3.0. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-8457. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in PLANET Technology GS-4210-24PL4C Hardware 2.0 and GS-4210-24P2S Hardware 3.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2024-8458. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.