Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-08-17 CVE-2023-4730 The LadiApp plugn for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init_endpoint() function hooked via 'init' in versions up to, and including, 4.3.
network
low complexity
 5.3
5.3
2024-08-16 CVE-2023-47728 Information Exposure Through an Error Message vulnerability in IBM Cloud PAK for Security and Qradar Suite
IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the request.
network
low complexity
ibm CWE-209
6.5
6.5
2024-08-16 CVE-2024-43381 Cross-site Scripting vulnerability in Yogeshojha Rengine
reNgine is an automated reconnaissance framework for web applications.
network
low complexity
yogeshojha CWE-79
5.4
5.4
2024-08-16 CVE-2024-43807 Cross-site Scripting vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2024.07.1 multiple stored XSS was possible on Clouds page
network
low complexity
jetbrains CWE-79
5.4
5.4
2024-08-16 CVE-2024-43808 Cross-site Scripting vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2024.07.1 self XSS was possible in the HashiCorp Vault plugin
network
low complexity
jetbrains CWE-79
5.4
5.4
2024-08-16 CVE-2024-43809 Cross-site Scripting vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2024.07.1 reflected XSS was possible on the agentPushPreset page
network
low complexity
jetbrains CWE-79
6.1
6.1
2024-08-16 CVE-2024-43810 Cross-site Scripting vulnerability in Jetbrains Teamcity
In JetBrains TeamCity before 2024.07.1 reflected XSS was possible in the AWS Core plugin
network
low complexity
jetbrains CWE-79
5.4
5.4
2024-08-16 CVE-2024-4781 A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to crash printer communications until the system is rebooted.
low complexity
 6.5
6.5
2024-08-16 CVE-2024-4782 A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to disrupt the printer's functionality until a manual system reboot occurs.
low complexity
 6.5
6.5
2024-08-16 CVE-2024-5209 A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to deny printing capabilities until the system is rebooted.
low complexity
 6.5
6.5