Total
2747 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-34691 | 2024-06-11 | N/A | 6.5 MEDIUM | ||
| Manage Incoming Payment Files (F1680) of SAP S/4HANA does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. As a result, it has high impact on integrity and no impact on the confidentiality and availability of the system. | |||||
| CVE-2024-34690 | 2024-06-11 | N/A | 5.4 MEDIUM | ||
| SAP Student Life Cycle Management (SLcM) fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could allow an attacker to access and edit non-sensitive report variants that are typically restricted, causing minimal impact on the confidentiality and integrity of the application. | |||||
| CVE-2023-52179 | 2024-06-11 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in WebCodingPlace Product Expiry for WooCommerce.This issue affects Product Expiry for WooCommerce: from n/a through 2.5. | |||||
| CVE-2023-33922 | 2024-06-11 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Elementor Elementor Website Builder.This issue affects Elementor Website Builder: from n/a through 3.13.2. | |||||
| CVE-2024-35685 | 2024-06-11 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Anders Norén Radcliffe 2.This issue affects Radcliffe 2: from n/a through 2.0.17. | |||||
| CVE-2023-52186 | 2024-06-11 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Woo WooCommerce Product Vendors.This issue affects WooCommerce Product Vendors: from n/a through 2.2.2. | |||||
| CVE-2024-37176 | 2024-06-11 | N/A | 5.5 MEDIUM | ||
| SAP BW/4HANA Transformation and Data Transfer Process (DTP) allows an authenticated attacker to gain higher access levels than they should have by exploiting improper authorization checks. This results in escalation of privileges. It has no impact on the confidentiality of data but may have low impacts on the integrity and availability of the application. | |||||
| CVE-2023-28775 | 2024-06-11 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Yoast Yoast SEO Premium.This issue affects Yoast SEO Premium: from n/a through 20.4. | |||||
| CVE-2024-0596 | 1 Getawesomesupport | 1 Awesome Support | 2024-06-10 | N/A | 5.3 MEDIUM |
| The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the editor_html() function in all versions up to, and including, 6.1.7. This makes it possible for authenticated attackers, with subscriber-level access and above, to view password protected and draft posts. | |||||
| CVE-2024-35717 | 2024-06-10 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in A WP Life Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal Slideshow.This issue affects Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal Slideshow: from n/a through 1.3.9. | |||||
| CVE-2024-23524 | 2024-06-10 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a through 2.0.30. | |||||
| CVE-2024-35720 | 2024-06-10 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in A WP Life Album Gallery – WordPress Gallery.This issue affects Album Gallery – WordPress Gallery: from n/a through 1.5.7. | |||||
| CVE-2024-22296 | 2024-06-10 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Code for Recovery 12 Step Meeting List.This issue affects 12 Step Meeting List: from n/a through 3.14.28. | |||||
| CVE-2024-22298 | 2024-06-10 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in TMS Amelia ameliabooking.This issue affects Amelia: from n/a through 1.0.98. | |||||
| CVE-2024-21751 | 2024-06-10 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in RabbitLoader.This issue affects RabbitLoader: from n/a through 2.19.13. | |||||
| CVE-2024-32727 | 2024-06-10 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Rometheme RomethemeForm For Elementor.This issue affects RomethemeForm For Elementor: from n/a through 1.1.2. | |||||
| CVE-2024-33545 | 2024-06-10 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10. | |||||
| CVE-2024-30515 | 2024-06-10 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Pixelite Events Manager.This issue affects Events Manager: from n/a through 6.4.6.4. | |||||
| CVE-2024-30529 | 2024-06-10 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Tainacan.Org Tainacan.This issue affects Tainacan: from n/a through 0.20.7. | |||||
| CVE-2024-31098 | 2024-06-10 | N/A | 8.1 HIGH | ||
| Missing Authorization vulnerability in Mr.Ebabi New Order Notification for Woocommerce.This issue affects New Order Notification for Woocommerce: from n/a through 2.0.2. | |||||