| 2024-12-13 | CVE-2024-28980 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Recoverpoint for Virtual Machines 6.0
Dell RecoverPoint for VMs, version(s) 6.0.x contain(s) a Use of a Broken or Risky Cryptographic Algorithm vulnerability in the SSH. | 9.8 |
| 2024-12-13 | CVE-2024-47984 | Unspecified vulnerability in Dell Recoverpoint for Virtual Machines 6.0
Dell RecoverPoint for Virtual Machines 6.0.x contains Denial of Service vulnerability. network low complexity dell | 6.5 |
| 2024-12-13 | CVE-2024-54266 | Cross-site Scripting vulnerability in Imagerecycle PDF & Image Compression
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ImageRecycle ImageRecycle pdf & image compression allows Reflected XSS.This issue affects ImageRecycle pdf & image compression: from n/a through 3.1.16. | 6.1 |
| 2024-12-13 | CVE-2024-22461 | OS Command Injection vulnerability in Dell Recoverpoint for Virtual Machines 6.0
Dell RecoverPoint for Virtual Machines 6.0.x contains an OS Command injection vulnerability. | 8.8 |
| 2024-12-13 | CVE-2024-38488 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell Recoverpoint for Virtual Machines 6.0
Dell RecoverPoint for Virtual Machines 6.0.x contains a vulnerability. | 9.8 |
| 2024-12-13 | CVE-2024-48007 | Use of Hard-coded Credentials vulnerability in Dell Recoverpoint for Virtual Machines 6.0
Dell RecoverPoint for Virtual Machines 6.0.x contains use of hard-coded credentials vulnerability. | 9.8 |
| 2024-12-13 | CVE-2024-48008 | OS Command Injection vulnerability in Dell Recoverpoint for Virtual Machines 6.0
Dell RecoverPoint for Virtual Machines 6.0.x contains a OS Command Injection vulnerability. | 6.5 |
| 2024-12-13 | CVE-2024-11827 | The Out of the Block: OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ootb_query shortcode in all versions up to, and including, 2.8.3 due to insufficient input sanitization and output escaping on user supplied attributes. | 6.4 |
| 2024-12-13 | CVE-2024-9608 | The MyParcel plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 4.24.1. | 6.1 |
| 2024-12-13 | CVE-2024-10783 | The MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple Sites plugin for WordPress is vulnerable to privilege escalation due to a missing authorization checks on the register_site function in all versions up to, and including, 5.2 when a site is left in an unconfigured state. | 8.1 |