Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-20 | CVE-2024-49327 | Unrestricted Upload of File with Dangerous Type vulnerability in Asepbagjapriandana Woostagram Connect Unrestricted Upload of File with Dangerous Type vulnerability in Asep Bagja Priandana Woostagram Connect allows Upload a Web Shell to a Web Server.This issue affects Woostagram Connect: from n/a through 1.0.2. | 9.8 |
| 2024-10-20 | CVE-2024-49329 | Unrestricted Upload of File with Dangerous Type vulnerability in Vivektamrakar WP Rest API FNS Unrestricted Upload of File with Dangerous Type vulnerability in Vivek Tamrakar WP REST API FNS allows Upload a Web Shell to a Web Server.This issue affects WP REST API FNS: from n/a through 1.0.0. | 9.8 |
| 2024-10-20 | CVE-2024-49330 | Unrestricted Upload of File with Dangerous Type vulnerability in Brx8R Nice Backgrounds Unrestricted Upload of File with Dangerous Type vulnerability in brx8r Nice Backgrounds allows Upload a Web Shell to a Web Server.This issue affects Nice Backgrounds: from n/a through 1.0. | 9.8 |
| 2024-10-20 | CVE-2024-49331 | Unrestricted Upload of File with Dangerous Type vulnerability in Myriadsolutionz Property LOT Management System Unrestricted Upload of File with Dangerous Type vulnerability in Myriad Solutionz Property Lot Management System allows Upload a Web Shell to a Web Server.This issue affects Property Lot Management System: from n/a through 4.2.38. | 8.8 |
| 2024-10-20 | CVE-2024-49332 | Deserialization of Untrusted Data vulnerability in Giveawayboost Giveaway Boost Deserialization of Untrusted Data vulnerability in Giveaway Boost allows Object Injection.This issue affects Giveaway Boost: from n/a through 2.1.4. | 9.8 |
| 2024-10-20 | CVE-2024-49607 | Unrestricted Upload of File with Dangerous Type vulnerability in Redwanhilali WP Dropbox Dropins Unrestricted Upload of File with Dangerous Type vulnerability in Redwan Hilali WP Dropbox Dropins allows Upload a Web Shell to a Web Server.This issue affects WP Dropbox Dropins: from n/a through 1.0. | 9.8 |
| 2024-10-20 | CVE-2024-49608 | Unspecified vulnerability in Gerryntabuhashe Gerryworks Post BY Mail : Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GERRYWORKS Post by Mail allows Privilege Escalation.This issue affects GERRYWORKS Post by Mail: from n/a through 1.0. | 8.8 |
| 2024-10-20 | CVE-2024-49610 | Unrestricted Upload of File with Dangerous Type vulnerability in Jackzhu Photokit Unrestricted Upload of File with Dangerous Type vulnerability in Jack Zhu allows Upload a Web Shell to a Web Server.This issue affects photokit: from n/a through 1.0. | 9.8 |
| 2024-10-20 | CVE-2024-49621 | Cross-Site Request Forgery (CSRF) vulnerability in APA Register Newsletter Form Cross-Site Request Forgery (CSRF) vulnerability in Apa APA Register Newsletter Form allows SQL Injection.This issue affects APA Register Newsletter Form: from n/a through 1.0.0. | 8.8 |
| 2024-10-20 | CVE-2024-49622 | Cross-Site Request Forgery (CSRF) vulnerability in APA Banner Slider Cross-Site Request Forgery (CSRF) vulnerability in Apa Apa Banner Slider allows SQL Injection.This issue affects Apa Banner Slider: from n/a through 1.0.0. | 8.8 |