Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

CVE güvenlik açıkları, KEV etiketleri, detay sayfaları ve kategori bazlı listeleme.
Toplam kayıt69,184
Sayfa3447 / 3460
FiltreYok
Unknown CVSS: - Yayın: 2025-01-02 13:15:07

CVE-2024-38778

CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in Epsiloncool WP Fast Total Search fulltext-search.This issue affects WP Fast Total Search: from n/a through
Medium CVSS: 4.3 Yayın: 2025-01-02 13:15:07

CVE-2024-38764

CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in Marsian allows Cross Site Request Forgery.This issue affects i-transform: from n/a through 3.0.9.
Medium CVSS: 6.9 Yayın: 2025-01-02 13:15:07

CVE-2024-13109

Kaoshifeng Yunfan Learning Examination System CWE-266
A vulnerability was found in Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2. It has been rated as critical. This issue affects some unknown processing of the file /doc.html. The manipulation leads to improper authorizatio…
Medium CVSS: 6.9 Yayın: 2025-01-02 13:15:06

CVE-2024-13108

Dlink Dir-816 Firmware CWE-266
A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. It has been declared as critical. This vulnerability affects unknown code of the file /goform/form2NetSniper.cgi. The manipulation leads to improper access controls. The attack ca…
Unknown CVSS: - Yayın: 2025-01-02 12:15:28

CVE-2024-56302

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jorisderuiter ConvertCalculator for WordPress convertcalculator allows Stored XSS.This issue affects ConvertCalculator for WordPress: from n/a throu…
Unknown CVSS: - Yayın: 2025-01-02 12:15:28

CVE-2024-56267

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in html5maps Interactive UK Map interactive-uk-map allows Stored XSS.This issue affects Interactive UK Map: from n/a through
High CVSS: 8.8 Yayın: 2025-01-02 12:15:28

CVE-2024-56266

Sonaar Mp3 Audio Player For Music\, Radio \& Podcast CWE-862
Missing Authorization vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podc…
Unknown CVSS: - Yayın: 2025-01-02 12:15:28

CVE-2024-56264

CWE-434
Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector acf-city-selector allows Upload a Web Shell to a Web Server.This issue affects ACF City Selector: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:28

CVE-2024-56263

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Shots for Dribbble gs-dribbble-portfolio allows DOM-Based XSS.This issue affects GS Shots for Dribbble: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:28

CVE-2024-56262

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins GS Coaches gs-coach allows Stored XSS.This issue affects GS Coaches: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:27

CVE-2024-56261

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GS Plugins Project Showcase gs-projects allows Stored XSS.This issue affects Project Showcase: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:27

CVE-2024-56260

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in StorePlugin ShopElement shopelement allows Stored XSS.This issue affects ShopElement: from n/a through
Medium CVSS: 5.4 Yayın: 2025-01-02 12:15:27

CVE-2024-56259

Ayecode Geodirectory CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Paolo GeoDirectory geodirectory allows Stored XSS.This issue affects GeoDirectory: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:27

CVE-2024-56258

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BlockArt Magazine Blocks magazine-blocks allows Stored XSS.This issue affects Magazine Blocks: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:27

CVE-2024-56255

CWE-862
Missing Authorization vulnerability in Stiofan AyeCode Connect ayecode-connect allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AyeCode Connect: from n/a through
Medium CVSS: 5.4 Yayın: 2025-01-02 12:15:27

CVE-2024-56254

Moveaddons Move Addons For Elementor CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in moveaddons Move Addons for Elementor move-addons allows Stored XSS.This issue affects Move Addons for Elementor: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:27

CVE-2024-56253

CWE-862
Missing Authorization vulnerability in supsystic Data Tables Generator by Supsystic data-tables-generator-by-supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Data Tables Generator by Supsystic: from…
Medium CVSS: 5.4 Yayın: 2025-01-02 12:15:26

CVE-2024-56252

Themelooks Enter Addons CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themelooks Enter Addons enteraddons allows Stored XSS.This issue affects Enter Addons: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:26

CVE-2024-56251

CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in Event Espresso Event Espresso 4 Decaf event-espresso-decaf allows Cross Site Request Forgery.This issue affects Event Espresso 4 Decaf: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 12:15:26

CVE-2024-56250

CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Greg Ross Just Writing Statistics just-writing-statistics allows SQL Injection.This issue affects Just Writing Statistics: from n/a through