Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-27 | CVE-2024-9136 | Unspecified vulnerability in Huawei Emui and Harmonyos Access permission verification vulnerability in the App Multiplier module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2024-09-27 | CVE-2024-6931 | Cross-site Scripting vulnerability in Stellarwp the Events Calendar The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via RSVP name field in all versions up to, and including, 6.6.3 due to insufficient input sanitization and output escaping. | 6.1 |
| 2024-09-27 | CVE-2024-39431 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0 In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. | 4.5 |
| 2024-09-27 | CVE-2024-39432 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0 In UMTS RLC driver, there is a possible out of bounds read due to a missing bounds check. | 4.5 |
| 2024-09-27 | CVE-2024-39433 | Out-of-bounds Write vulnerability in Google Android 13.0/14.0 In drm service, there is a possible out of bounds write due to a missing bounds check. | 4.4 |
| 2024-09-27 | CVE-2024-39434 | Out-of-bounds Read vulnerability in Google Android 13.0/14.0 In drm service, there is a possible out of bounds read due to a missing bounds check. | 4.4 |
| 2024-09-27 | CVE-2024-39435 | Unspecified vulnerability in Google Android 12.0/13.0/14.0 In Logmanager service, there is a possible missing verification incorrect input. | 7.8 |
| 2024-09-27 | CVE-2024-8681 | Cross-site Scripting vulnerability in Leap13 Premium Addons for Elementor The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2024-09-27 | CVE-2024-8991 | Cross-site Scripting vulnerability in Hyumika Openstreetmap The OSM – OpenStreetMap plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's osm_map and osm_map_v3 shortcodes in all versions up to, and including, 6.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2024-09-27 | CVE-2024-9049 | Cross-site Scripting vulnerability in Fastlinemedia Beaver Builder The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Button Group module in all versions up to, and including, 2.8.3.6 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |