Export limit exceeded: 10671 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (10671 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-32144 | 1 Welcart | 1 Welcart E-commerce | 2024-11-21 | 5.4 Medium |
| Missing Authorization vulnerability in Welcart Inc. Welcart e-Commerce.This issue affects Welcart e-Commerce: from n/a through 2.9.14. | ||||
| CVE-2024-31970 | 1 Adtran | 3 834-5, 834-5 Firmware, Sdg Smartos | 2024-11-21 | 7.2 High |
| AdTran SRG 834-5 HDC17600021F1 devices (with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1) have SSH enabled by default, accessible both over the LAN and the Internet. During a window of time when the device is being set up, it uses a default username and password combination of admin/admin with root-level privileges. An attacker can exploit this window to gain unauthorized root access by either modifying the existing admin account or creating a new account with equivalent privileges. This vulnerability allows attackers to execute arbitrary commands. NOTE: The vendor has disputed this, finding the report not applicable. According to AdTran, SSH has never been accessible (from WAN) on SmartOS official builds. Furthermore, the vendor adds that test build 11.1.0.101-202106231430 was never released to end users. | ||||
| CVE-2024-31423 | 2 Alex Volkov, Volkov | 2 Wp Accessibility Helper, Wp Accessibility Helper | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in Alex Volkov WP Accessibility Helper (WAH).This issue affects WP Accessibility Helper (WAH): from n/a through 0.6.2.5. | ||||
| CVE-2024-31294 | 1 Androidbubble | 1 Wp Sort Order | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in Fahad Mahmood WP Sort Order.This issue affects WP Sort Order: from n/a through 1.3.1. | ||||
| CVE-2024-31284 | 1 Wpdeveloper | 1 Embedpress | 2024-11-21 | 6.5 Medium |
| Missing Authorization vulnerability in WPDeveloper EmbedPress.This issue affects EmbedPress: from n/a through 3.9.8. | ||||
| CVE-2024-31283 | 1 Zorem | 1 Advanced Local Pickup For Woocommerce | 2024-11-21 | 7.5 High |
| Missing Authorization vulnerability in zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup for WooCommerce: from n/a through 1.6.2. | ||||
| CVE-2024-31276 | 1 Wpfactory | 1 Products\, Order \& Customers Export For Woocommerce | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in WPFactory Products, Order & Customers Export for WooCommerce.This issue affects Products, Order & Customers Export for WooCommerce: from n/a through 2.0.8. | ||||
| CVE-2024-31275 | 1 Metagauss | 1 Eventprime | 2024-11-21 | 8.2 High |
| Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n/a through 3.3.4. | ||||
| CVE-2024-31274 | 1 Wpdeveloper | 1 Embedpress | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in WPDeveloper EmbedPress.This issue affects EmbedPress: from n/a through 3.9.11. | ||||
| CVE-2024-31273 | 1 Wiselyhub | 1 Js Help Desk | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin.This issue affects JS Help Desk – Best Help Desk & Support Plugin: from n/a through 2.8.3. | ||||
| CVE-2024-31267 | 1 Wpdesk | 1 Flexible Checkout Fields | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in WP Desk Flexible Checkout Fields for WooCommerce.This issue affects Flexible Checkout Fields for WooCommerce: from n/a through 4.1.2. | ||||
| CVE-2024-31244 | 1 Bricksforge | 1 Bricksforge | 2024-11-21 | 9.8 Critical |
| Missing Authorization vulnerability in Bricksforge.This issue affects Bricksforge: from n/a through 2.0.17. | ||||
| CVE-2024-31243 | 1 Bricksforge | 1 Bricksforge | 2024-11-21 | 7.5 High |
| Missing Authorization vulnerability in Bricksforge.This issue affects Bricksforge: from n/a through 2.0.17. | ||||
| CVE-2024-30544 | 1 Upqode | 1 Whizzy | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in UPQODE Whizzy.This issue affects Whizzy: from n/a through 1.1.18. | ||||
| CVE-2024-30539 | 1 Getawesomesupport | 1 Awesome Support | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.7. | ||||
| CVE-2024-30538 | 1 Delucks | 1 Delucks Seo | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in DELUCKS GmbH DELUCKS SEO.This issue affects DELUCKS SEO: from n/a through 2.5.4. | ||||
| CVE-2024-30537 | 1 Wpclever | 1 Wpc Badge Management For Woocommerce | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in WPClever WPC Badge Management for WooCommerce.This issue affects WPC Badge Management for WooCommerce: from n/a through 2.4.0. | ||||
| CVE-2024-30528 | 1 Spiffyplugins | 1 Spiffy Calendar | 2024-11-21 | 5.4 Medium |
| Missing Authorization vulnerability in Spiffy Plugins Spiffy Calendar.This issue affects Spiffy Calendar: from n/a through 4.9.10. | ||||
| CVE-2024-30525 | 1 Moveaddons | 1 Move Addons For Elementor | 2024-11-21 | 5.3 Medium |
| Missing Authorization vulnerability in moveaddons Move Addons for Elementor.This issue affects Move Addons for Elementor: from n/a through 1.2.9. | ||||
| CVE-2024-30517 | 1 Slicedinvoices | 1 Sliced Invoices | 2024-11-21 | 4.3 Medium |
| Missing Authorization vulnerability in Sliced Invoices.This issue affects Sliced Invoices: from n/a through 3.9.2. | ||||