Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-02 | CVE-2024-39623 | Cross-Site Request Forgery (CSRF) vulnerability in Cridio Listingpro Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro allows Authentication Bypass.This issue affects ListingPro: from n/a through 2.9.4. | 8.8 |
| 2025-01-02 | CVE-2024-37093 | Cross-Site Request Forgery (CSRF) vulnerability in Stylemixthemes Masterstudy LMS Cross-Site Request Forgery (CSRF) vulnerability in StylemixThemes MasterStudy LMS allows Cross Site Request Forgery.This issue affects MasterStudy LMS: from n/a through 3.2.1. | 8.8 |
| 2025-01-02 | CVE-2024-37469 | Cross-Site Request Forgery (CSRF) vulnerability in Creativethemes Blocksy Cross-Site Request Forgery (CSRF) vulnerability in CreativeThemes Blocksy allows Cross Site Request Forgery.This issue affects Blocksy: from n/a through 2.0.22. | 8.8 |
| 2025-01-02 | CVE-2024-56247 | SQL Injection vulnerability in Afthemes WP Post Author Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AF themes WP Post Author allows SQL Injection.This issue affects WP Post Author: from n/a through 3.8.2. | 7.2 |
| 2025-01-02 | CVE-2024-56266 | Missing Authorization vulnerability in Sonaar MP3 Audio Player for Music, Radio & Podcast Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.8. | 8.8 |
| 2025-01-01 | CVE-2025-0168 | SQL Injection vulnerability in Anisha JOB Recruitment 1.0 A vulnerability classified as critical has been found in code-projects Job Recruitment 1.0. | 7.5 |
| 2024-12-31 | CVE-2024-13079 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A vulnerability was found in PHPGurukul Land Record System 1.0 and classified as critical. | 8.8 |
| 2024-12-31 | CVE-2024-13078 | SQL Injection vulnerability in PHPgurukul Land Record System 1.0 A vulnerability has been found in PHPGurukul Land Record System 1.0 and classified as critical. | 8.8 |
| 2024-12-31 | CVE-2023-6603 | A flaw was found in FFmpeg's HLS playlist parsing. | 7.5 |
| 2024-12-31 | CVE-2024-12106 | Missing Authentication for Critical Function vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2024.0.2, an unauthenticated attacker can configure LDAP settings. | 7.5 |