Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-01-14 CVE-2024-12006 Missing Authorization vulnerability in Boldgrid W3 Total Cache
The W3 Total Cache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to, and including, 2.8.1.
network
low complexity
boldgrid CWE-862
5.3
5.3
2025-01-14 CVE-2024-13323 The WP Booking Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'booking' shortcode in all versions up to, and including, 10.9.2 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
6.4
2025-01-14 CVE-2024-13348 The Smart Agenda – Prise de rendez-vous en ligne plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.7.
network
low complexity
CWE-352
6.1
6.1
2025-01-14 CVE-2024-11396 The Event Monster – Event Management, Tickets Booking, Upcoming Event plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.4.3 via the Visitors List Export file.
network
low complexity
CWE-359
5.3
5.3
2025-01-14 CVE-2025-23030 Cross-site Scripting vulnerability in Wegia
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions.
network
low complexity
wegia CWE-79
6.1
6.1
2025-01-14 CVE-2025-23031 Cross-site Scripting vulnerability in Wegia
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions.
network
low complexity
wegia CWE-79
5.4
5.4
2025-01-14 CVE-2025-23032 Cross-site Scripting vulnerability in Wegia
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions.
network
low complexity
wegia CWE-79
5.4
5.4
2025-01-14 CVE-2025-23033 Cross-site Scripting vulnerability in Wegia
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions.
network
low complexity
wegia CWE-79
5.4
5.4
2025-01-14 CVE-2025-23034 Cross-site Scripting vulnerability in Wegia
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions.
network
low complexity
wegia CWE-79
6.1
6.1
2025-01-14 CVE-2025-23035 Cross-site Scripting vulnerability in Wegia
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions.
network
low complexity
wegia CWE-79
5.4
5.4