AI Engine for WordPress: ChatGPT, GPT Content Generator <= 1.0.1 - Authenticated (Contributor+) Arbitrary File Read

liquidthemes AI Engine for WordPress: ChatGPT, GPT Content Generator

Frontend File Manager Plugin <= 23.4 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary File Renaming

nmedia Frontend File Manager Plugin

atec Duplicate Page & Post <= 1.2.20 - Missing Authorization to Authenticated (Contributor+) Arbitrary Post Duplication and Data Exposure

docjojo atec Duplicate Page & Post

YouTube Subscribe <= 3.0.0 - Authenticated (Admin+) Stored Cross-Site Scripting via Title and Channel ID

mahabubs YouTube Subscribe

Social Images Widget <= 2.1 - Missing Authorization to Unauthenticated Arbitrary Plugin Settings Deletion

lyrathemes Social Images Widget

Locker Content <= 1.0.0 - Unauthenticated Information Exposure

appglut Locker Content

Admin and Customer Messages After Order for WooCommerce: OrderConvo <= 14 - Missing Authorization to Unauthenticated Information Disclosure

nmedia Admin and Customer Messages After Order for WooCommerce: OrderConvo

ProjectList <= 0.3.0 - Authenticated (Editor+) Arbitrary File Upload

ov3rkll ProjectList

Wishlist for WooCommerce <= 1.0.9 - Insecure Direct Object Reference to Unauthenticated Wishlist Manipulation

themehunk Wishlist for WooCommerce

Conditional Maintenance Mode for WordPress <= 1.0.0 - Cross-Site Request Forgery

evolurise Conditionnal Maintenance Mode for WordPress

Admin and Customer Messages After Order for WooCommerce: OrderConvo <= 14 - Missing Authorization to Unauthenticated User Impersonation in Order Messages

nmedia Admin and Customer Messages After Order for WooCommerce: OrderConvo

ZWeb - Social Mobile <= 1.0.0 - Authenticated (Admin+) Stored Cross-Site Scripting

vithanhlam Zweb Social Mobile – Ứng Dụng Nút Gọi Mobile

Job Board by BestWebSoft <= 1.2.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting via $_GET Array Storage

bestweblayout Job Board by BestWebSoft

Chamber Dashboard Business Directory <= 3.3.11 - Missing Authorization to Unauthenticated Business Information Export

gwendydd Chamber Dashboard Business Directory

Autochat Automatic Conversation <= 1.1.9 - Missing Authorization to Unauthenticated Settings Update

autochat Autochat Automatic Conversation

A stack buffer overflow vulnerability has been identified in certain router models. An authenticated...

ASUS Router ASUS Router +1个

An authentication-bypass vulnerability exists in AiCloud. This vulnerability can be triggered by an ...

ASUS Router ASUS Router +1个

Security Point (Windows) of MaLion and MaLionCloud contains a heap-based buffer overflow vulnerabili...

Intercom, Inc. Security Point (Windows) of MaLion Intercom, Inc. Security Point (Windows) of MaLionCloud

Security Point (Windows) of MaLion and MaLionCloud contains a stack-based buffer overflow vulnerabil...

Intercom, Inc. Security Point (Windows) of MaLion Intercom, Inc. Security Point (Windows) of MaLionCloud

Incorrect default permissions issue exists in Security Point (Windows) of MaLion prior to Ver.5.3.4....

Intercom, Inc. Security Point (Windows) of MaLion