Total
3283 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-35742 | 1 Codeparrots | 1 Easy Forms For Mailchimp | 2024-08-02 | 5.3 Medium |
| Missing Authorization vulnerability in Code Parrots Easy Forms for Mailchimp.This issue affects Easy Forms for Mailchimp: from n/a through 6.9.0. | ||||
| CVE-2024-35665 | 1 Namithjawahar | 1 Insert Post Ads | 2024-08-02 | 5.3 Medium |
| Missing Authorization vulnerability in namithjawahar Insert Post Ads.This issue affects Insert Post Ads: from n/a through 1.3.2. | ||||
| CVE-2024-35721 | 1 Awplife | 1 Image Gallery | 2024-08-02 | 4.3 Medium |
| Missing Authorization vulnerability in A WP Life Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery.This issue affects Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery: from n/a through 1.4.5. | ||||
| CVE-2024-35722 | 1 Awplife | 1 Slider Responsive Slideshow | 2024-08-02 | 4.3 Medium |
| Missing Authorization vulnerability in A WP Life Slider Responsive Slideshow – Image slider, Gallery slideshow.This issue affects Slider Responsive Slideshow – Image slider, Gallery slideshow: from n/a through 1.4.0. | ||||
| CVE-2024-35735 | 1 Codepeople | 1 Wp Time Slots Booking Form | 2024-08-02 | 5.3 Medium |
| Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form.This issue affects WP Time Slots Booking Form: from n/a through 1.2.11. | ||||
| CVE-2024-35685 | 1 Anders Noren | 1 Radcliffe 2 | 2024-08-02 | 5.3 Medium |
| Missing Authorization vulnerability in Anders Norén Radcliffe 2.This issue affects Radcliffe 2: from n/a through 2.0.17. | ||||
| CVE-2024-35669 | 2024-08-02 | 4.3 Medium | ||
| Missing Authorization vulnerability in Bowo Debug Log Manager.This issue affects Debug Log Manager: from n/a through 2.3.1. | ||||
| CVE-2024-35672 | 1 Netgsm | 1 Netgsm | 2024-08-02 | 7.5 High |
| Missing Authorization vulnerability in Netgsm.This issue affects Netgsm: from n/a through 2.9.19. | ||||
| CVE-2024-35748 | 1 Opmc | 1 Woocommerce Dropshipping | 2024-08-02 | 5.3 Medium |
| Missing Authorization vulnerability in OPMC WooCommerce Dropshipping.This issue affects WooCommerce Dropshipping: from n/a through 5.0.4. | ||||
| CVE-2024-35660 | 1 Jeweltheme | 1 Master Addons For Elementor | 2024-08-02 | 6.5 Medium |
| Missing Authorization vulnerability in Jewel Theme Master Addons for Elementor.This issue affects Master Addons for Elementor: from n/a through 2.0.5.4.1. | ||||
| CVE-2024-35662 | 1 83pixel | 1 Simple Cod Fees For Woocommerce | 2024-08-02 | 5.4 Medium |
| Missing Authorization vulnerability in Andreas Sofantzis Simple COD Fees for WooCommerce.This issue affects Simple COD Fees for WooCommerce: from n/a through 2.0.2. | ||||
| CVE-2024-35741 | 1 Getawesomesupport | 1 Awesome Support | 2024-08-02 | 4.3 Medium |
| Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.7. | ||||
| CVE-2024-35723 | 1 Arwebdesign | 1 Dashboard To-do List | 2024-08-02 | 4.3 Medium |
| Missing Authorization vulnerability in Andrew Rapps Dashboard To-Do List.This issue affects Dashboard To-Do List: from n/a through 1.2.0. | ||||
| CVE-2024-35692 | 1 Termly | 1 Gdpr Cookie Consent Banner | 2024-08-02 | 5.3 Medium |
| Missing Authorization vulnerability in Termly Cookie Consent.This issue affects Cookie Consent: from n/a through 3.2. | ||||
| CVE-2024-35671 | 2024-08-02 | 4.3 Medium | ||
| Missing Authorization vulnerability in Minoji MJ Update History.This issue affects MJ Update History: from n/a through 1.0.4. | ||||
| CVE-2024-35661 | 1 Softlabbd | 1 Upload Fields For Wpforms | 2024-08-02 | 5.3 Medium |
| Missing Authorization vulnerability in SoftLab Upload Fields for WPForms.This issue affects Upload Fields for WPForms: from n/a through 1.0.2. | ||||
| CVE-2024-35667 | 2024-08-02 | 5.3 Medium | ||
| Missing Authorization vulnerability in WP EasyCart.This issue affects WP EasyCart: from n/a through 5.5.19. | ||||
| CVE-2024-35683 | 2024-08-02 | 5.3 Medium | ||
| Missing Authorization vulnerability in Teplitsa of social technologies Leyka.This issue affects Leyka: from n/a through 3.31.1. | ||||
| CVE-2024-35628 | 2024-08-02 | 4.3 Medium | ||
| Missing Authorization vulnerability in Photo Gallery Team Photo Gallery by 10Web.This issue affects Photo Gallery by 10Web: from n/a through 1.8.25. | ||||
| CVE-2024-35237 | 1 Zelnickb | 1 Mit Identibot | 2024-08-02 | 7.5 High |
| MIT IdentiBot is an open-source Discord bot written in Node.js that verifies individuals' affiliations with MIT, grants them roles in a Discord server, and stores information about them in a database backend. A vulnerability that exists prior to commit 48e3e5e7ead6777fa75d57c7711c8e55b501c24e impacts all users who have performed verification with an instance of MIT IdentiBot that meets the following conditions: The instance of IdentiBot is tied to a "public" Discord application—i.e., users other than the API access registrant can add it to servers; *and* the instance has not yet been patched. In affected versions, IdentiBot does not check that a server is authorized before allowing members to execute slash and user commands in that server. As a result, any user can join IdentiBot to their server and then use commands (e.g., `/kerbid`) to reveal the full name and other information about a Discord user who has verified their affiliation with MIT using IdentiBot. The latest version of MIT IdentiBot contains a patch for this vulnerability (implemented in commit 48e3e5e7ead6777fa75d57c7711c8e55b501c24e). There is no way to prevent exploitation of the vulnerability without the patch. To prevent exploitation of the vulnerability, all vulnerable instances of IdentiBot should be taken offline until they have been updated. | ||||