Show filters
335,067 Total Results
Displaying 81-90 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
Unknown

CVE-2024-52445

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Deserialization of Untrusted Data vulnerability in Modeltheme QRMenu Restaurant QR Menu Lite allows Object Injection.This issue affects QRMenu Restaurant QR Menu Lite: from n/a through 1.0.3.
0
Attacker Value
Unknown

CVE-2024-52444

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WPOPAL Opal Woo Custom Product Variation allows Path Traversal.This issue affects Opal Woo Custom Product Variation: from n/a through 1.1.3.
0
Attacker Value
Unknown

CVE-2024-52443

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Deserialization of Untrusted Data vulnerability in Nerijus Masikonis Geolocator allows Object Injection.This issue affects Geolocator: from n/a through 1.1.
0
Attacker Value
Unknown

CVE-2024-52442

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Incorrect Privilege Assignment vulnerability in Userplus UserPlus allows Privilege Escalation.This issue affects UserPlus: from n/a through 2.0.
0
Attacker Value
Unknown

CVE-2024-52441

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') vulnerability in Rajesh Thanoch Quick Learn allows Object Injection.This issue affects Quick Learn: from n/a through 1.0.1.
0
Attacker Value
Unknown

CVE-2024-52440

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Deserialization of Untrusted Data vulnerability in Bueno Labs Pvt. Ltd. Xpresslane Fast Checkout allows Object Injection.This issue affects Xpresslane Fast Checkout: from n/a through 1.0.0.
0
Attacker Value
Unknown

CVE-2024-52439

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Deserialization of Untrusted Data vulnerability in Mark O’Donnell Team Rosters allows Object Injection.This issue affects Team Rosters: from n/a through 4.6.
0
Attacker Value
Unknown

CVE-2024-52438

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Missing Authentication for Critical Function vulnerability in deco.Agency de:branding allows Privilege Escalation.This issue affects de:branding: from n/a through 1.0.2.
0
Attacker Value
Unknown

CVE-2024-52437

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Missing Authentication for Critical Function vulnerability in Saul Morales Pacheco Banner System allows Privilege Escalation.This issue affects Banner System: from n/a through 1.0.0.
0
Attacker Value
Unknown

CVE-2024-11406

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS.This issue affects django CMS Attributes Fields: before 4.0.