CXSECURITY.COM Free Security List

Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected

{{te.id}}. {{te.nameDis}} ({{te.count}})

Random comment

{{ x.title }}
{{ x.auth }}

Voted

{{ x.nameSh }} +{{x.pos}} {{x.neg}}

Check the Bugtraq

2024-06-02
Med.	Online Payment Hub System - SQLi Authentication Bypass Hamit AVSAR
Low	iMLog Cross Site Scripting Gabriel Felipe
Med.	Craft CMS Logs Plugin 3.0.3 Path Traversal (Authenticated) CVE-2022-23409 Steffen Rogge
Med.	Progress Flowmon 12.3.5 Local sudo Privilege Escalation CVE-2024-2389 Dave Yesland
Med.	Akaunting 3.1.8 Client-Side Template Injection tmrswrr
High	Akaunting 3.1.8 Server-Side Template Injection tmrswrr
Low	ORing IAP-420 2.01e Cross Site Scripting / Command Injection Multiple CVE T. Weber
Med.	BWL Advanced FAQ Manager 2.0.3 SQL Injection CVE-2024-32136 Ivan Spiridonov
Med.	Wordpress Theme XStore 9.3.8 SQLi CVE-2024-33559 Abdualhadi khalifa
2024-05-29
High	Eclipse ThreadX Buffer Overflows Multiple CVE Marco Ivaldi
Med.	HAWKI 1.0.0-beta.1 XSS / File Overwrite / Session Fixation Multiple CVE Thorger Jansen
Med.	Siemens CP-XXXX Series Exposed Serial Shell Gerhard Hechenberger
2024-05-28
Med.	VSP Softtech - Sql Injection behrouz mansoori

Dorks

2024-06-03
CVE-2024-34385	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in YITH YITH WooCommerce Wishlist allows Stored XSS.This issue affects YITH WooCommerce Wishlist: from n/a through 3.32.0.
CVE-2024-34764	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Stored XSS.This issue affects Essential Addons for Elementor: from n/a through 5.9.15.
CVE-2024-34766	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Automattic ChaosTheory allows Stored XSS.This issue affects ChaosTheory: from n/a through 1.3.
CVE-2024-34767	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HasThemes ShopLentor allows Stored XSS.This issue affects ShopLentor: from n/a through 2.8.7.
CVE-2024-34769	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in cyclonetheme Elegant Blocks allows Stored XSS.This issue affects Elegant Blocks: from n/a through 1.7.
CVE-2024-34770	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Popup Maker Popup Maker WP allows Stored XSS.This issue affects Popup Maker WP: from n/a through 1.2.8.
CVE-2024-35632	Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks. Integration for Contact Form 7 and Constant Contact.This issue affects Integration for Contact Form 7 and Constant Contact: from n/a through 1.1.5.
CVE-2023-43537	Information disclosure while handling T2LM Action Frame in WLAN Host.
CVE-2023-43538	Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
CVE-2023-43542	Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.

2024-05-28
Med.	VSP Softtech - Sql Injection "Developed By VSP Softtech"	behrouz mansoori
Med.	Designed By San Software - Sql Injection "Designed By San Software"	behrouz mansoori
Med.	Designed By San Software - Blind Sql Injection "Designed By San Software"	behrouz mansoori
2024-05-22
Med.	Webmirchi - Sql Injection "Powered by Webmirchi"	behrouz mansoori
Med.	Axiomatic - Blind Sql Injection "Design by Axiomatic.it"	behrouz mansoori

Quick goto:

Bugtraq The latest CVEs Dorks
Search

Bugtraq

CVEMAP

By Author

CVE Id

CWE Id

By vendors

By products

Are you looking CVE for some product?

Top Vendors:
Apple Microsoft Google Oracle Apache IBM Red Hat HP Adobe Mozilla

Full List of Vendors

Top Products:
Linux Kernel Mac OS X Windows XP Windows 10 Flash Player Adobe Reader PHP JRE JDK
Wordpress Joomla Chrome IE Firefox Safari HTTPD Tomcat Nginx

Full List of Products

Top CWE:
CWE-89 (SQL Injection) CWE-79 (XSS) CWE-119 (Buffer Overflow) CWE-22 (Path Traversal)

Check CWE Dictionary

Donate:

is an open project developed and moderated fully by one independent person.

Help develop the project and make
Donations

Bugtraq Stats

CVE database

Affected

Random comment

Voted

2024-06-02

Med.

Low

Med.

Med.

Med.

High

Low

Med.

Med.

2024-05-29

High

Med.

Med.

2024-05-28

Med.

The latest CVEs

2024-06-03

Dorks

2024-05-28

Med.

Med.

Med.

2024-05-22

Med.

Med.

Quick goto:

Are you looking CVE for some product?

Top Vendors:

Top Products:

Top CWE:

Donate:

is an open project developed and moderated fully by one independent person.

Help develop the project and makeDonations

Help develop the project and make
Donations