Show filters
22 Total Results
Displaying 1-10 of 22
Sort by:
Attacker Value
Unknown

CVE-2024-56045

Disclosure Date: December 31, 2024 (last updated January 02, 2025)
Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affects WPLMS: from n/a before 1.9.9.5.
0
0
Attacker Value
Unknown

CVE-2024-56044

Disclosure Date: December 31, 2024 (last updated January 02, 2025)
Authentication Bypass Using an Alternate Path or Channel vulnerability in VibeThemes WPLMS allows Authentication Bypass.This issue affects WPLMS: from n/a through 1.9.9.
0
0
Attacker Value
Unknown

CVE-2024-56043

Disclosure Date: December 31, 2024 (last updated January 02, 2025)
Incorrect Privilege Assignment vulnerability in VibeThemes WPLMS allows Privilege Escalation.This issue affects WPLMS: from n/a through 1.9.9.
0
0
Attacker Value
Unknown

CVE-2024-56040

Disclosure Date: December 31, 2024 (last updated January 02, 2025)
Incorrect Privilege Assignment vulnerability in VibeThemes VibeBP allows Privilege Escalation.This issue affects VibeBP: from n/a through 1.9.9.4.1.
0
0
Attacker Value
Unknown

CVE-2024-56046

Disclosure Date: December 31, 2024 (last updated January 02, 2025)
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to a Web Server.This issue affects WPLMS: from n/a through 1.9.9.
0
0
Attacker Value
Unknown

CVE-2024-56042

Disclosure Date: December 31, 2024 (last updated January 02, 2025)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VibeThemes WPLMS allows SQL Injection.This issue affects WPLMS: from n/a before 1.9.9.5.3.
0
0
Attacker Value
Unknown

CVE-2024-56041

Disclosure Date: December 31, 2024 (last updated January 02, 2025)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VibeThemes VibeBP allows SQL Injection.This issue affects VibeBP: from n/a before 1.9.9.5.1.
0
0
Attacker Value
Unknown

CVE-2024-56039

Disclosure Date: December 31, 2024 (last updated January 02, 2025)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VibeThemes VibeBP allows SQL Injection.This issue affects VibeBP: from n/a before 1.9.9.7.7.
0
0
Attacker Value
Unknown

CVE-2024-56057

Disclosure Date: December 18, 2024 (last updated December 19, 2024)
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to a Web Server.This issue affects WPLMS: from n/a before 1.9.9.5.2.
0
0
Attacker Value
Unknown

CVE-2024-56055

Disclosure Date: December 18, 2024 (last updated December 19, 2024)
Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affects WPLMS: from n/a before 1.9.9.5.2.
0
0
View More Topics  Next >