Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-05 | CVE-2024-10687 | SQL Injection vulnerability in Contest-Gallery Contest Gallery The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal, Social Share Buttons plugin for WordPress is vulnerable to time-based SQL Injection via the $collectedIds parameter in all versions up to, and including, 24.0.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 9.8 |
| 2024-11-05 | CVE-2024-10114 | Unspecified vulnerability in Wpwebelite Woocommerce - Social Login The WooCommerce - Social Login plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.7.7. | 8.1 |
| 2024-11-05 | CVE-2024-10711 | Cross-Site Request Forgery (CSRF) vulnerability in Ithemelandco Woocommerce Report The WooCommerce Report plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.1. | 8.8 |
| 2024-11-05 | CVE-2024-51510 | Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos Out-of-bounds access vulnerability in the logo module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 5.5 |
| 2024-11-05 | CVE-2024-51511 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of parameter type not being verified in the WantAgent module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |
| 2024-11-05 | CVE-2024-51512 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of parameter type not being verified in the WantAgent module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |
| 2024-11-05 | CVE-2024-51513 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of processes not being fully terminated in the VPN module Impact: Successful exploitation of this vulnerability will affect power consumption. | 5.5 |
| 2024-11-05 | CVE-2024-51514 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of pop-up windows belonging to no app in the VPN module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 5.5 |
| 2024-11-05 | CVE-2024-51515 | Race Condition vulnerability in Huawei Harmonyos 5.0.0 Race condition vulnerability in the kernel network module Impact:Successful exploitation of this vulnerability may affect availability. | 4.7 |
| 2024-11-05 | CVE-2024-51516 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Permission control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to function abnormally. | 5.5 |