Total
2747 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-0570 | 1 Totolink | 2 N350rt, N350rt Firmware | 2024-06-18 | 7.5 HIGH | 9.1 CRITICAL |
| A vulnerability classified as critical was found in Totolink N350RT 9.3.5u.6265. This vulnerability affects unknown code of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. It is recommended to upgrade the affected component. VDB-250786 is the identifier assigned to this vulnerability. | |||||
| CVE-2024-0569 | 1 Totolink | 2 T8, T8 Firmware | 2024-06-18 | 4.0 MEDIUM | 9.1 CRITICAL |
| A vulnerability classified as problematic has been found in Totolink T8 4.1.5cu.833_20220905. This affects the function getSysStatusCfg of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. The manipulation of the argument ssid/key leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 4.1.5cu.862_B20230228 is able to address this issue. It is recommended to upgrade the affected component. The identifier VDB-250785 was assigned to this vulnerability. | |||||
| CVE-2023-35040 | 2024-06-17 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in SendPress SendPress Newsletters.This issue affects SendPress Newsletters: from n/a through 1.23.11.6. | |||||
| CVE-2023-29174 | 2024-06-17 | N/A | 6.5 MEDIUM | ||
| Missing Authorization vulnerability in NervyThemes SKU Label Changer For WooCommerce.This issue affects SKU Label Changer For WooCommerce: from n/a through 3.0. | |||||
| CVE-2023-36695 | 2024-06-17 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in Maxime Schoeni Sublanguage.This issue affects Sublanguage: from n/a through 2.9. | |||||
| CVE-2023-51523 | 2024-06-17 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in WriterSystem WooCommerce Easy Duplicate Product.This issue affects WooCommerce Easy Duplicate Product: from n/a through 0.3.0.7. | |||||
| CVE-2023-37394 | 2024-06-17 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Deepak anand WP Dummy Content Generator.This issue affects WP Dummy Content Generator: from n/a through 2.3.0. | |||||
| CVE-2023-35045 | 2024-06-17 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Fat Rat Fat Rat Collect.This issue affects Fat Rat Collect: from n/a through 2.6.7. | |||||
| CVE-2023-36504 | 2024-06-17 | N/A | 6.5 MEDIUM | ||
| Missing Authorization vulnerability in BBS e-Theme BBS e-Popup.This issue affects BBS e-Popup: from n/a through 2.4.5. | |||||
| CVE-2023-51507 | 2024-06-17 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in ExpressTech Quiz And Survey Master.This issue affects Quiz And Survey Master: from n/a through 8.1.16. | |||||
| CVE-2023-36694 | 2024-06-17 | N/A | 6.3 MEDIUM | ||
| Missing Authorization vulnerability in Bryan Lee Kingkong Board.This issue affects Kingkong Board: from n/a through 2.1.0.2. | |||||
| CVE-2023-51516 | 2024-06-17 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in Business Directory Team Business Directory Plugin.This issue affects Business Directory Plugin: from n/a through 6.3.9. | |||||
| CVE-2023-51497 | 2024-06-17 | N/A | 5.4 MEDIUM | ||
| Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9. | |||||
| CVE-2023-51495 | 2024-06-17 | N/A | 6.5 MEDIUM | ||
| Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7. | |||||
| CVE-2023-51377 | 2024-06-17 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in WPEverest Everest Forms.This issue affects Everest Forms: from n/a through 2.0.3. | |||||
| CVE-2023-51496 | 2024-06-17 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7. | |||||
| CVE-2024-23504 | 2024-06-17 | N/A | 5.3 MEDIUM | ||
| Missing Authorization vulnerability in WPManageNinja LLC Ninja Tables.This issue affects Ninja Tables: from n/a through 5.0.5. | |||||
| CVE-2024-5459 | 1 Fivestarplugins | 1 Five Star Restaurant Menu | 2024-06-13 | N/A | 4.3 MEDIUM |
| The Restaurant Menu and Food Ordering plugin for WordPress is vulnerable to unauthorized creation of data due to a missing capability check on 'add_section', 'add_menu', 'add_menu_item', and 'add_menu_page' functions in all versions up to, and including, 2.4.16. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create menu sections, menus, food items, and new menu pages. | |||||
| CVE-2023-52224 | 2024-06-13 | N/A | 4.3 MEDIUM | ||
| Missing Authorization vulnerability in Revolut Revolut Gateway for WooCommerce.This issue affects Revolut Gateway for WooCommerce: from n/a through 4.9.7. | |||||
| CVE-2023-52199 | 2024-06-13 | N/A | 6.5 MEDIUM | ||
| Missing Authorization vulnerability in Matthias Pfefferle & Automattic ActivityPub.This issue affects ActivityPub: from n/a through 1.0.5. | |||||