Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-12-06 CVE-2024-11738 A flaw was found in Rustls 0.23.13 and related APIs.
network
low complexity
CWE-248
5.3
2024-12-06 CVE-2024-11321 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hi e-learning Learning Management System (LMS) allows Reflected XSS.This issue affects Learning Management System (LMS): before 06.12.2024.
network
low complexity
CWE-79
5.4
2024-12-06 CVE-2024-4633 The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘addExtraMimeType’ function in versions up to, and including, 3.2.1 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
2024-12-06 CVE-2024-53796 Cross-site Scripting vulnerability in Themesflat Addons for Elementor
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themesflat Themesflat Addons For Elementor allows DOM-Based XSS.This issue affects Themesflat Addons For Elementor: from n/a through 2.2.2.
network
low complexity
themesflat CWE-79
5.4
2024-12-06 CVE-2024-53797 Cross-site Scripting vulnerability in Fastlinemedia Beaver Builder
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in The Beaver Builder Team Beaver Builder allows Stored XSS.This issue affects Beaver Builder: from n/a through 2.8.4.3.
network
low complexity
fastlinemedia CWE-79
5.4
2024-12-06 CVE-2024-53801 Cross-site Scripting vulnerability in Bold-Themes Bold Page Builder
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BoldThemes Bold Page Builder allows Stored XSS.This issue affects Bold Page Builder: from n/a through 5.2.1.
network
low complexity
bold-themes CWE-79
5.4
2024-12-06 CVE-2024-53802 Cross-site Scripting vulnerability in Futuriowp Futurio Extra
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FuturioWP Futurio Extra allows Stored XSS.This issue affects Futurio Extra: from n/a through 2.0.14.
network
low complexity
futuriowp CWE-79
5.4
2024-12-06 CVE-2024-53803 Missing Authorization vulnerability in Wpmailster WP Mailster
Missing Authorization vulnerability in brandtoss WP Mailster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Mailster: from n/a through 1.8.16.0.
network
low complexity
wpmailster CWE-862
8.8
2024-12-06 CVE-2024-53804 Unspecified vulnerability in Wpmailster WP Mailster
Insertion of Sensitive Information Into Sent Data vulnerability in brandtoss WP Mailster allows Retrieve Embedded Sensitive Data.This issue affects WP Mailster: from n/a through 1.8.16.0.
network
low complexity
wpmailster
7.5
2024-12-06 CVE-2024-53805 Unspecified vulnerability in Wpmailster WP Mailster
Missing Authorization vulnerability in brandtoss WP Mailster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Mailster: from n/a through 1.8.16.0.
network
low complexity
wpmailster
critical
9.8