Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-14 | CVE-2024-8797 | Cross-site Scripting vulnerability in Wpbookingsystem WP Booking System The WP Booking System – Booking Calendar plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.0.19.8. | 6.1 |
| 2024-09-14 | CVE-2024-8724 | Cross-site Scripting vulnerability in Xootix Waitlist Woocommerce The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.7.5. | 6.1 |
| 2024-09-14 | CVE-2022-3459 | Authorization Bypass Through User-Controlled Key vulnerability in Lilmonkee Woocommerce multiple Free Gift The WooCommerce Multiple Free Gift plugin for WordPress is vulnerable to gift manipulation in all versions up to, and including, 1.2.3. | 5.3 |
| 2024-09-13 | CVE-2024-44096 | Insecure Default Initialization of Resource vulnerability in Google Android there is a possible arbitrary read due to an insecure default value. | 4.4 |
| 2024-09-13 | CVE-2024-6259 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr BT: HCI: adv_ext_report Improper discarding in adv_ext_report | 6.5 |
| 2024-09-13 | CVE-2024-5931 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr BT: Unchecked user input in bap_broadcast_assistant | 6.5 |
| 2024-09-13 | CVE-2024-6135 | Divide By Zero vulnerability in Zephyrproject Zephyr BT:Classic: Multiple missing buf length checks | 6.5 |
| 2024-09-13 | CVE-2024-6137 | Out-of-bounds Write vulnerability in Zephyrproject Zephyr BT: Classic: SDP OOB access in get_att_search_list | 6.5 |
| 2024-09-13 | CVE-2024-5754 | Unspecified vulnerability in Zephyrproject Zephyr BT: Encryption procedure host vulnerability low complexity zephyrproject | 6.5 |
| 2024-09-13 | CVE-2024-6258 | Integer Underflow (Wrap or Wraparound) vulnerability in Zephyrproject Zephyr BT: Missing length checks of net_buf in rfcomm_handle_data | 6.5 |