Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-19 | CVE-2018-9432 | Unspecified vulnerability in Google Android In createPhonebookDialogView and createMapDialogView of BluetoothPermissionActivity.java, there is a possible permissions bypass. | 7.8 |
| 2024-11-19 | CVE-2018-9433 | Unspecified vulnerability in Google Android In ArrayConcatVisitor of builtins-array.cc, there is a possible type confusion due to improper input validation. | 8.8 |
| 2024-11-19 | CVE-2023-27609 | Cross-site Scripting vulnerability in Hyscaler WP Roles AT Registration Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NetTantra WP Roles at Registration allows Stored XSS.This issue affects WP Roles at Registration: from n/a through 0.23. | 4.8 |
| 2024-11-19 | CVE-2024-11400 | Cross-site Scripting vulnerability in Pluginus Woocommerce products Filter The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the really_curr_tax parameter in all versions up to, and including, 1.3.6.3 due to insufficient input sanitization and output escaping. | 6.1 |
| 2024-11-19 | CVE-2024-30424 | Cross-site Scripting vulnerability in Wpzoom Beaver Builder Addons Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPZOOM Beaver Builder Addons by WPZOOM allows Stored XSS.This issue affects Beaver Builder Addons by WPZOOM: from n/a through 1.3.4. | 5.4 |
| 2024-11-19 | CVE-2024-51669 | Cross-Site Request Forgery (CSRF) vulnerability in Vivwebsolutions Dynamic Widgets Cross-Site Request Forgery (CSRF) vulnerability in Vivwebs Dynamic Widgets.This issue affects Dynamic Widgets: from n/a through 1.6.4. | 8.8 |
| 2024-11-19 | CVE-2024-52392 | Cross-Site Request Forgery (CSRF) vulnerability in W3Speedster Cross-Site Request Forgery (CSRF) vulnerability in W3speedster W3SPEEDSTER.This issue affects W3SPEEDSTER: from n/a through 7.25. | 6.5 |
| 2024-11-19 | CVE-2024-52595 | Cross-site Scripting vulnerability in Fedoralovespython Lxml Html Clean lxml_html_clean is a project for HTML cleaning functionalities copied from `lxml.html.clean`. | 6.1 |
| 2024-11-19 | CVE-2018-9365 | Out-of-bounds Read vulnerability in Google Android In smp_data_received of smp_l2c.cc, there is a possible out of bounds read followed by code execution due to a missing bounds check. | 8.8 |
| 2024-11-19 | CVE-2018-9410 | Out-of-bounds Read vulnerability in Google Android 8.0/8.1 In analyzeAxes of FontUtils.cpp, there is a possible out of bounds read due to a missing bounds check. | 5.5 |