Vulnerabilities

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-10	CVE-2024-11055	SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0 A vulnerability, which was classified as critical, has been found in 1000 Projects Beauty Parlour Management System 1.0. network low complexity 1000projects CWE-89 critical	9.8
2024-11-10	CVE-2024-10265	Cross-site Scripting vulnerability in 10Web Form Maker The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.15.30. network low complexity 10web CWE-79	6.1
2024-11-10	CVE-2024-10958	Code Injection vulnerability in Wppa WP Photo Album Plus The The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution via getshortcodedrenderedfenodelay AJAX action in all versions up to, and including, 8.8.08.007 . network low complexity wppa CWE-94	7.3
2024-11-10	CVE-2024-51576	Cross-site Scripting vulnerability in Wpza AMP IMG Shortcode Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPZA AMP Img Shortcode allows Stored XSS.This issue affects AMP Img Shortcode: from n/a through 1.0.1. network low complexity wpza CWE-79	5.4
2024-11-10	CVE-2024-11054	Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Simple Music Cloud Community System 1.0 A vulnerability classified as critical was found in SourceCodester Simple Music Cloud Community System 1.0. network low complexity oretnom23 CWE-434 critical	9.8
2024-11-10	CVE-2024-51577	Cross-site Scripting vulnerability in Camunda Bpmn.Io 1.0 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Camunda Services GmbH bpmn.Io allows Stored XSS.This issue affects bpmn.Io: from n/a through 1.0. network low complexity camunda CWE-79	5.4
2024-11-10	CVE-2024-51578	Cross-site Scripting vulnerability in Lucapaggetti 3D Presentation 1.0 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Luca Paggetti 3D Presentation allows Stored XSS.This issue affects 3D Presentation: from n/a through 1.0. network low complexity lucapaggetti CWE-79	5.4
2024-11-10	CVE-2024-51580	Cross-site Scripting vulnerability in Cleversoft Clever Addons for Elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CleverSoft Clever Addons for Elementor allows Stored XSS.This issue affects Clever Addons for Elementor: from n/a through 2.2.1. network low complexity cleversoft CWE-79	5.4
2024-11-10	CVE-2024-51581	Cross-site Scripting vulnerability in Nicheaddons Restaurant & Cafe Addon for Elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Restaurant & Cafe Addon for Elementor allows Stored XSS.This issue affects Restaurant & Cafe Addon for Elementor: from n/a through 1.5.6. network low complexity nicheaddons CWE-79	5.4
2024-11-10	CVE-2024-51583	Cross-site Scripting vulnerability in Pluginspoint Kento ADS Rotator Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in KentoThemes Kento Ads Rotator allows Stored XSS.This issue affects Kento Ads Rotator: from n/a through 1.3. network low complexity pluginspoint CWE-79	5.4

Vulnerabilities {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities"}]}

Vulnerabilities