Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-30 | CVE-2025-0568 | Out-of-bounds Write vulnerability in Santesoft Sante Pacs Server Sante PACS Server DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. | 7.5 |
| 2025-01-30 | CVE-2025-0569 | Out-of-bounds Write vulnerability in Santesoft Sante Pacs Server Sante PACS Server DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. | 7.5 |
| 2025-01-30 | CVE-2025-0574 | Out-of-bounds Write vulnerability in Santesoft Sante Pacs Server Sante PACS Server URL path Memory Corruption Denial-of-Service Vulnerability. | 7.5 |
| 2025-01-30 | CVE-2025-0882 | SQL Injection vulnerability in Fabianros Chat System 1.0 A vulnerability was found in code-projects Chat System up to 1.0. | 7.5 |
| 2025-01-30 | CVE-2024-10591 | Missing Authorization vulnerability in Makewebbetter Hubspot for Woocommerce The MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the hubwoo_save_updates() function in all versions up to, and including, 1.5.9. | 8.8 |
| 2025-01-30 | CVE-2024-11600 | Code Injection vulnerability in Visualmodo Borderless The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.5.9 via the 'write_config' function. | 7.2 |
| 2025-01-30 | CVE-2024-12129 | Missing Authorization vulnerability in Wp-Royal-Themes Royal Core The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royal_restore_backup' function in all versions up to, and including, 2.9.2. | 8.8 |
| 2025-01-30 | CVE-2024-12269 | Missing Authorization vulnerability in Wpmessiah Safe AI Malware Protection for WP The Safe Ai Malware Protection for WP plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_db() function in all versions up to, and including, 1.0.17. | 7.5 |
| 2025-01-30 | CVE-2024-13646 | Unspecified vulnerability in Aakashbhagat Single User Chat The Single-user-chat plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to insufficient validation on the 'single_user_chat_update_login' function in all versions up to, and including, 0.5. | 8.1 |
| 2025-01-30 | CVE-2024-13671 | Unspecified vulnerability in Partitionnumerique Music Sheet Viewer The Music Sheet Viewer plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 4.1 via the read_score_file() function. | 7.5 |