Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-20 | CVE-2024-8726 | Cross-site Scripting vulnerability in Mailmunch Mailchimp Forms The MailChimp Forms by MailMunch plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 3.2.3. | 6.1 |
| 2024-11-20 | CVE-2024-9239 | Cross-site Scripting vulnerability in Booster for Woocommerce The Booster for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 7.2.3. | 6.1 |
| 2024-11-20 | CVE-2024-9653 | Cross-site Scripting vulnerability in Oracle Restaurant Menu - Food Ordering System - Table Reservation The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'action' parameter in all versions up to, and including, 2.4.2 due to insufficient input sanitization and output escaping. | 6.1 |
| 2024-11-20 | CVE-2024-11278 | The GD bbPress Attachments plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 4.7.2. network low complexity | 6.1 |
| 2024-11-20 | CVE-2018-9467 | Unspecified vulnerability in Google Android In the getHost() function of UriTest.java, there is the possibility of incorrect web origin determination. | 9.8 |
| 2024-11-20 | CVE-2024-44306 | Classic Buffer Overflow vulnerability in Apple Macos A buffer overflow issue was addressed with improved memory handling. | 7.8 |
| 2024-11-20 | CVE-2024-44307 | Classic Buffer Overflow vulnerability in Apple Macos A buffer overflow issue was addressed with improved memory handling. | 7.8 |
| 2024-11-20 | CVE-2024-44308 | Unspecified vulnerability in Apple products The issue was addressed with improved checks. | 8.8 |
| 2024-11-20 | CVE-2024-44309 | Cross-site Scripting vulnerability in Apple products A cookie management issue was addressed with improved state management. | 6.1 |
| 2024-11-19 | CVE-2018-9440 | Unspecified vulnerability in Google Android In parse of M3UParser.cpp there is a possible resource exhaustion due to improper input validation. | 6.5 |