Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-01 | CVE-2024-8107 | Cross-site Scripting vulnerability in Themepunch Slider Revolution The Slider Revolution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.7.18 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-10-01 | CVE-2024-8981 | The Broken Link Checker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg in /app/admin-notices/features/class-view.php without appropriate escaping on the URL in all versions up to, and including, 2.4.0. network low complexity | 7.1 |
| 2024-10-01 | CVE-2024-9360 | SQL Injection vulnerability in Code-Projects Restaurant Reservation System 1.0 A vulnerability was found in code-projects Restaurant Reservation System 1.0. | 9.8 |
| 2024-10-01 | CVE-2024-47396 | Cross-site Scripting vulnerability in Moveaddons Move Addons for Elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in moveaddons Move Addons for Elementor allows Stored XSS.This issue affects Move Addons for Elementor: from n/a through 1.3.3. | 5.4 |
| 2024-10-01 | CVE-2024-9358 | Unspecified vulnerability in Thingsboard A vulnerability has been found in ThingsBoard up to 3.7.0 and classified as problematic. | 5.9 |
| 2024-10-01 | CVE-2024-9359 | SQL Injection vulnerability in Code-Projects Restaurant Reservation System 1.0 A vulnerability was found in code-projects Restaurant Reservation System 1.0 and classified as critical. | 9.8 |
| 2024-09-30 | CVE-2024-45073 | Cross-site Scripting vulnerability in IBM Websphere Application Server 8.5/9.0 IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. | 4.8 |
| 2024-09-30 | CVE-2024-7670 | Out-of-bounds Read vulnerability in Autodesk Navisworks 2025/2025.1/2025.2 A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read. | 7.8 |
| 2024-09-30 | CVE-2024-7671 | Out-of-bounds Write vulnerability in Autodesk Navisworks 2025/2025.1/2025.2 A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, can force an Out-of-Bounds Write. | 7.8 |
| 2024-09-30 | CVE-2024-7672 | Out-of-bounds Write vulnerability in Autodesk Navisworks 2025/2025.1/2025.2 A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force an Out-of-Bounds Write. | 7.8 |