Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-05 | CVE-2024-10263 | Code Injection vulnerability in Tickera The Tickera – WordPress Event Ticketing plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.5.4.4. | 7.3 |
| 2024-11-05 | CVE-2024-51518 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Vulnerability of message types not being verified in the advanced messaging modul Impact: Successful exploitation of this vulnerability may affect availability. | 7.5 |
| 2024-11-05 | CVE-2024-51523 | Unspecified vulnerability in Huawei Harmonyos 5.0.0 Information management vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2024-11-05 | CVE-2024-47253 | Path Traversal vulnerability in 2N Access Commander In 2N Access Commander versions 3.1.1.2 and prior, a Path Traversal vulnerability could allow an attacker with administrative privileges to write files on the filesystem and potentially achieve arbitrary remote code execution. | 7.2 |
| 2024-11-05 | CVE-2024-47254 | Unspecified vulnerability in 2N Access Commander In 2N Access Commander versions 3.1.1.2 and prior, an Insufficient Verification of Data Authenticity vulnerability could allow an attacker to escalate their privileges and gain root access to the system. | 7.2 |
| 2024-11-05 | CVE-2024-47255 | Unspecified vulnerability in 2N Access Commander In 2N Access Commander versions 3.1.1.2 and prior, a local attacker can escalate their privileges in the system which could allow for arbitrary code execution with root permissions. | 7.8 |
| 2024-11-05 | CVE-2024-10114 | Unspecified vulnerability in Wpwebelite Woocommerce - Social Login The WooCommerce - Social Login plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.7.7. | 8.1 |
| 2024-11-05 | CVE-2024-10711 | Cross-Site Request Forgery (CSRF) vulnerability in Ithemelandco Woocommerce Report The WooCommerce Report plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.1. | 8.8 |
| 2024-11-05 | CVE-2024-47137 | Out-of-bounds Write vulnerability in Openatom Openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through out-of-bounds write. | 7.8 |
| 2024-11-05 | CVE-2024-47404 | Double Free vulnerability in Openatom Openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through double free. | 7.8 |