Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-01-22 CVE-2024-13091 The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'qcld_wpcfb_file_upload' function in all versions up to, and including, 13.5.4.
network
low complexity
CWE-434
critical
 9.8
9.8
2025-01-21 CVE-2024-21245 Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Business Logic Infra SEC).
network
low complexity
 5.4
5.4
2025-01-21 CVE-2025-21489 Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite (component: Region Mapping).
network
low complexity
 6.1
6.1
2025-01-21 CVE-2025-21490 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
network
low complexity
 4.9
4.9
2025-01-21 CVE-2025-21491 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
network
low complexity
 4.9
4.9
2025-01-21 CVE-2025-21492 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
 4.9
4.9
2025-01-21 CVE-2025-21493 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges).
network
high complexity
 4.4
4.4
2025-01-21 CVE-2025-21494 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges).
local
high complexity
 4.1
4.1
2025-01-21 CVE-2025-21495 Vulnerability in the MySQL Enterprise Firewall product of Oracle MySQL (component: Firewall).
network
high complexity
 4.4
4.4
2025-01-21 CVE-2025-21497 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
network
low complexity
 5.5
5.5