Vulnerabilities > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-29	CVE-2024-41346	Cross-site Scripting vulnerability in Jpatokal Openflights 20240820 openflights commit 5234b5b is vulnerable to Cross-Site Scripting (XSS) via php/submit.php network low complexity jpatokal CWE-79	5.4
2024-08-29	CVE-2024-41347	Cross-site Scripting vulnerability in Jpatokal Openflights 20240820 openflights commit 5234b5b is vulnerable to Cross-Site Scripting (XSS) via php/settings.php network low complexity jpatokal CWE-79	6.1
2024-08-29	CVE-2024-41348	Cross-site Scripting vulnerability in Jpatokal Openflights 20240820 openflights commit 5234b5b is vulnerable to Cross-Site Scripting (XSS) via php/alsearch.php network low complexity jpatokal CWE-79	6.1
2024-08-29	CVE-2024-41350	Cross-site Scripting vulnerability in Baijunyao Bjyadmin 20170907 bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting (XSS) via Public/statics/umeditor1_2_3/php/imageUp.php network low complexity baijunyao CWE-79	6.1
2024-08-29	CVE-2024-41351	Cross-site Scripting vulnerability in Baijunyao Bjyadmin 20170907 bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting (XSS) via Public/statics/umeditor1_2_3/php/getContent.php network low complexity baijunyao CWE-79	6.1
2024-08-29	CVE-2024-41358	Cross-site Scripting vulnerability in PHPipam 1.6 phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via app\admin\import-export\import-load-data.php. network low complexity phpipam CWE-79	6.1
2024-08-29	CVE-2024-41371	Cross-site Scripting vulnerability in Organizr 1.90 Organizr v1.90 is vulnerable to Cross Site Scripting (XSS) via api.php. network low complexity organizr CWE-79	6.1
2024-08-29	CVE-2024-43920	Cross-site Scripting vulnerability in Jegstudio Gutenverse Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jegstudio Gutenverse allows Stored XSS.This issue affects Gutenverse: from n/a through 1.9.4. network low complexity jegstudio CWE-79	5.4
2024-08-29	CVE-2024-43921	Cross-site Scripting vulnerability in Magic-Post-Thumbnail Magic Post Thumbnail Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Magic Post Thumbnail allows Reflected XSS.This issue affects Magic Post Thumbnail: from n/a through 5.2.9. network low complexity magic-post-thumbnail CWE-79	6.1
2024-08-29	CVE-2024-43947	Cross-Site Request Forgery (CSRF) vulnerability in Dineshkarki WP Armour Extended Cross-Site Request Forgery (CSRF) vulnerability in Dinesh Karki WP Armour Extended.This issue affects WP Armour Extended: from n/a through 1.26. network low complexity dineshkarki CWE-352	4.3

Vulnerabilities > Medium {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Medium"}]}

Vulnerabilities > Medium