| 2025-01-08 | CVE-2024-12112 | The Easy Form Builder – WordPress plugin form builder: contact form, survey form, payment form, and custom form builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name' parameter of the 'add_form_Emsfb' AJAX action in all versions up to, and including, 3.8.8 due to insufficient input sanitization and output escaping and missing authorization checks. | 6.4 |
| 2025-01-08 | CVE-2024-12521 | The Slotti Ajanvaraus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slotti-embed-ga' shortcode in all versions up to, and including, 1.3.1 due to insufficient input sanitization and output escaping on user supplied attributes. | 6.4 |
| 2025-01-08 | CVE-2024-12713 | The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.2 via the handle_export_form() function due to a missing capability check. | 5.3 |
| 2025-01-08 | CVE-2024-54121 | Unspecified vulnerability in Huawei Harmonyos 5.0.0
Startup control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. | 7.5 |
| 2025-01-08 | CVE-2024-56448 | Unspecified vulnerability in Huawei Emui and Harmonyos
Vulnerability of improper access control in the home screen widget module Impact: Successful exploitation of this vulnerability may affect availability. | 7.5 |
| 2025-01-08 | CVE-2024-56449 | Unspecified vulnerability in Huawei Emui and Harmonyos
Privilege escalation vulnerability in the Account module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2025-01-08 | CVE-2024-56450 | Classic Buffer Overflow vulnerability in Huawei Emui and Harmonyos
Buffer overflow vulnerability in the component driver module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |
| 2025-01-08 | CVE-2024-56451 | Integer Overflow or Wraparound vulnerability in Huawei Harmonyos 5.0.0
Integer overflow vulnerability during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |
| 2025-01-08 | CVE-2024-56452 | Unspecified vulnerability in Huawei Harmonyos 5.0.0
Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |
| 2025-01-08 | CVE-2024-56453 | Unspecified vulnerability in Huawei Harmonyos 5.0.0
Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. | 5.5 |