Tag: CWE-288

0 Attack Reports | 156 Vulnerabilities

Vulnerabilities

CVE-2024-2013

10.0
    FOXMAN-UN/UNEM server/API Gateway
Published: June 11, 2024

CVE-2024-2973

10.0
    Juniper Networks Session Smart Router
    Juniper Networks Session Smart Conductor
    Juniper Networks WAN Assurance Router
Published: June 27, 2024

CVE-2024-10081

10.0
    CodeChecker
Published: November 6, 2024

CVE-2024-11639

10.0
    Ivanti CSA
Published: December 10, 2024

CVE-2024-38437

9.8
    D-Link
Published: July 21, 2024

CVE-2024-7350

9.8
    Appointment Booking Calendar Plugin for WordPress
    Online Scheduling Plugin – BookingPress for WordPress
Published: August 8, 2024

CVE-2024-7503

9.8
    WooCommerce - Social Login plugin for WordPress
Published: August 12, 2024

CVE-2024-8277

9.8
    Villatheme
  • Woocommerce Photo Reviews
Published: September 11, 2024

CVE-2024-43692

9.8
    Doverfuelingsolutions
  • Progauge Maglink Lx Console Firmware
  • Progauge Maglink Lx Console
  • Progauge Maglink Lx4 Console Firmware
  • Progauge Maglink Lx4 Console
Published: September 25, 2024

CVE-2024-7781

9.8
    Artbees
  • Jupiter X Core
Published: September 26, 2024

CVE-2024-9106

9.8
    Wechat Social login plugin for WordPress
Published: October 1, 2024

CVE-2024-9289

9.8
    Redefiningtheweb
  • Affiliate Pro
Published: October 1, 2024

CVE-2024-8943

9.8
    LatePoint plugin for WordPress
Published: October 8, 2024

CVE-2024-9822

9.8
    Pedalo Connector plugin for WordPress
Published: October 11, 2024

CVE-2024-9105

9.8
    UltimateAI plugin for WordPress
Published: October 16, 2024

CVE-2024-49247

9.8
    BuddyPress Better Registration
Published: October 16, 2024

CVE-2024-9893

9.8
    Nextend Social Login Pro plugin for WordPress
Published: October 16, 2024

CVE-2024-49328

9.8
    Vivektamrakar
  • Wp Rest Api Fns
Published: October 20, 2024

CVE-2024-49604

9.8
    Najeebmedia
  • Simple User Registration
Published: October 20, 2024

CVE-2024-9488

9.8
    Gvectors
  • Wpdiscuz
Published: October 25, 2024

CVE-2024-47406

9.8
    Toshibatec
  • E-Studio1058 Firmware
  • E-Studio1058
  • E-Studio1208 Firmware
  • E-Studio1208
  • E-Studio908 Firmware
  • E-Studio908
    Sharp
Published: October 25, 2024

CVE-2024-10381

9.8
    Matrixcomsec
  • Cosec Vega Faxq Firmware
  • Cosec Vega Faxq
Published: October 25, 2024

CVE-2024-9930

9.8
    Extensions by HocWP Team plugin for WordPress
Published: October 26, 2024

CVE-2024-9931

9.8
    Wux Blog Editor plugin for WordPress
Published: October 26, 2024

CVE-2024-9933

9.8
    WatchTowerHQ plugin for WordPress
Published: October 26, 2024

CVE-2024-9501

9.8
    Wp Social Login and Register Social Counter plugin for WordPress
Published: October 26, 2024

CVE-2024-50477

9.8
    Stacksmarket
  • Stacks Mobile App Builder
Published: October 28, 2024

CVE-2024-50486

9.8
    Acnoo
  • Flutter Api
Published: October 28, 2024

CVE-2024-50487

9.8
    Maantheme
  • Maanstore Api
Published: October 28, 2024

CVE-2024-50489

9.8
    Realtyworkstation
  • Realty Workstation
Published: October 28, 2024

CVE-2024-9988

9.8
    Odude
  • Crypto Tool
Published: October 29, 2024

CVE-2024-9989

9.8
    Odude
  • Crypto Tool
Published: October 29, 2024

CVE-2024-50503

9.8
    Deryck Oñate User Toolkit
Published: October 30, 2024

CVE-2024-10284

9.8
    WordPress CE21 Suite plugin
Published: November 9, 2024

CVE-2024-10245

9.8
    Relais 2FA plugin for WordPress
Published: November 12, 2024

CVE-2024-11028

9.8
    Icdsoft
  • Multimanager Wp
Published: November 13, 2024

CVE-2024-10924

9.8
    Really-Simple-Plugins
  • Really Simple Security
Published: November 15, 2024

CVE-2024-10961

9.8
    Social Login plugin for WordPress
Published: November 23, 2024

CVE-2024-11925

9.8
    JobSearch WP Job Board plugin for WordPress
Published: November 28, 2024

CVE-2024-52475

9.8
    Automation Web Platform Wawp
Published: November 28, 2024

CVE-2024-54294

9.8
    Firebase OTP Authentication
Published: December 13, 2024

CVE-2024-54295

9.8
    ListApp Mobile Manager
Published: December 13, 2024

CVE-2024-54296

9.8
    CoSchool LMS
Published: December 13, 2024

CVE-2024-54297

9.8
    www.vbsso.com vBSSO-lite
Published: December 13, 2024

CVE-2024-43234

9.8
    Woffice
Published: December 16, 2024

CVE-2024-11349

9.8
    WordPress AdForest theme
Published: December 21, 2024

CVE-2024-56044

9.8
    WPLMS
Published: December 31, 2024

CVE-2024-12402

9.8
    WordPress Themes Coder plugin
Published: January 7, 2025

CVE-2024-12847

9.8
    NETGEAR DGN1000
Published: January 10, 2025

CVE-2024-55591

9.8
    Fortinet
  • Fortiproxy
  • Fortios
Published: January 14, 2025

CVE-2024-12857

9.8
    Scriptsbundle
  • Adforest
Published: January 22, 2025

CVE-2025-0364

9.8
    BigAnt Server
Published: February 4, 2025

CVE-2025-0674

9.8
    Elber products
Published: February 7, 2025

CVE-2025-1061

9.8
    Nextend Social Login Pro plugin for WordPress
Published: February 7, 2025

CVE-2025-0316

9.8
    WP Directorybox Manager plugin for WordPress
Published: February 8, 2025

CVE-2025-0181

9.8
    WP Foodbakery plugin for WordPress
Published: February 11, 2025

CVE-2024-13182

9.8
    WP Directorybox Manager plugin for WordPress
Published: February 13, 2025

CVE-2025-1283

9.8
    Dingtian-Tech
  • Dt-R002 Firmware
  • Dt-R002
  • Dt-R008 Firmware
  • Dt-R008
  • Dt-R016 Firmware
  • Dt-R016
  • Dt-R032 Firmware
  • Dt-R032
Published: February 13, 2025

CVE-2025-26966

9.8
    PrivateContent
Published: February 25, 2025

CVE-2025-1564

9.8
    SetSail Membership plugin for WordPress
Published: March 1, 2025

CVE-2025-1638

9.8
    Alloggio Membership plugin for WordPress
Published: March 1, 2025

CVE-2025-1671

9.8
    Academist Membership plugin for WordPress
Published: March 1, 2025

CVE-2025-1515

9.8
    WP Real Estate Manager plugin for WordPress
Published: March 5, 2025

CVE-2025-27658

9.8
    Vasion Print (formerly PrinterLogic) Virtual Appliance Host
Published: March 5, 2025

CVE-2025-1315

9.8
    InWave Jobs plugin for WordPress
Published: March 7, 2025

CVE-2024-13446

9.8
    Wordpress
  • Workreap
Published: March 12, 2025

CVE-2024-11286

9.8
    Wordpress
  • Job Hunt
Published: March 14, 2025

CVE-2024-13771

9.8
    Wordpress
  • Civi Job Board Freelance Marketplace
Published: March 14, 2025

CVE-2024-13442

9.8
    Wordpress
  • Service Finder Bookings Plugin
Published: March 19, 2025

CVE-2025-31095

9.8
    Ho3einie
  • Material Dashboard
Published: April 1, 2025

CVE-2024-13553

9.8
    Wordpress
  • Sms Alert Order Notifications
Published: April 1, 2025

CVE-2025-1909

9.8
    Buddyboss
  • Buddyboss Platform Pro
Published: May 5, 2025

CVE-2025-3844

9.8
    Peprodev
  • Ultimate Profile Solutions
Published: May 7, 2025

CVE-2025-4797

9.8
    Wordpress
  • Golo
Published: June 3, 2025

CVE-2025-31022

9.8
    Payu-India
  • Payu
Published: June 9, 2025

CVE-2025-4973

9.8
    Workreap
  • Workreap
Published: June 12, 2025

CVE-2025-6688

9.8
    Wordpress
  • Simple Payment Plugin
Published: June 27, 2025

CVE-2025-46412

9.3
    Vertiv
  • *
Published: May 21, 2025

CVE-2025-30184

9.3
    Cyberdata
  • Intercom
Published: June 9, 2025

CVE-2025-2492

9.2
    Asus
  • Aicloud
Published: April 18, 2025

CVE-2024-2012

9.1
    FOXMAN-UN/UNEM server / API Gateway
Published: June 11, 2024

CVE-2024-33610

9.1
    UNKNOWN
Published: November 26, 2024

CVE-2025-0159

9.1
    IBM FlashSystem
Published: February 28, 2025

CVE-2024-12225

9.1
    Redhat
  • Quarkus Security Webauthn
Published: May 6, 2025

CVE-2024-3496

8.8
    Printer Manufacturer
Published: June 14, 2024

CVE-2024-9522

8.8
    Lagunaisw
  • Wp Users Masquerade
Published: October 10, 2024

CVE-2024-10002

8.8
    Roveridx
  • Rover Idx
Published: October 22, 2024

CVE-2024-49675

8.8
    Vitaliibryl
  • Switch User
Published: October 23, 2024

CVE-2024-9890

8.8
    User Toolkit plugin for WordPress
Published: October 26, 2024

CVE-2024-50488

8.8
    Priyabratasarkar
  • Token Login
Published: October 28, 2024

CVE-2024-54336

8.8
    Projectopia
Published: December 13, 2024

CVE-2024-56013

8.8
    Wovax IDX
Published: December 16, 2024

CVE-2025-26511

8.8
    Apache Cassandra
    Stratio's Cassandra-Lucene-Index plugin
Published: February 13, 2025

CVE-2024-9658

8.8
    School Management System for Wordpress plugin
Published: March 7, 2025

CVE-2025-22277

8.8
    Appsbd
  • Vitepos
Published: April 1, 2025

CVE-2025-47461

8.8
    Mediaticus
  • Subaccounts For Woocommerce
Published: May 23, 2025

CVE-2025-5190

8.8
    Wordpress
  • Browse As
Published: May 30, 2025

CVE-2025-31019

8.8
    Miniorange
  • Password Policy Manager
Published: June 9, 2025

CVE-2025-32976

8.8
    Quest
  • Quest Kace Systems Management Appliance
Published: June 24, 2025

CVE-2025-25171

8.8
    Themesgrove
  • Wp Smartpay
Published: June 27, 2025

CVE-2024-36470

8.1
    JetBrains TeamCity
Published: May 29, 2024

CVE-2024-7628

8.1
    WordPress MStore API plugin
Published: August 15, 2024

CVE-2024-9861

8.1
    Miniorange OTP Verification with Firebase plugin for WordPress
Published: October 17, 2024

CVE-2024-11178

8.1
    Login With OTP plugin for WordPress
Published: December 6, 2024

CVE-2025-24472

8.1
    FortiOS
    FortiProxy
Published: February 11, 2025

CVE-2025-1717

8.1
    Pluginly
  • Login Me Now
Published: February 27, 2025

CVE-2025-0749

8.1
    Homey theme for WordPress
Published: March 7, 2025

CVE-2024-7125

7.8
    Hitachi Ops Center Common Services
Published: August 27, 2024

CVE-2024-41173

7.8
    Beckhoff
  • Ipc Diagnostics Package
  • Twincat\/Bsd
Published: August 27, 2024

CVE-2024-8012

7.8
    Ivanti
  • Workspace Control
Published: September 10, 2024

CVE-2024-47574

7.8
    Fortinet FortiClientWindows
Published: November 13, 2024

CVE-2025-22230

7.8
    Vmware
  • Vmware Tools
Published: March 25, 2025

CVE-2024-31916

7.5
    IBM OpenBMC
Published: June 27, 2024

CVE-2024-35124

7.5
    OpenBMC
Published: August 13, 2024

CVE-2024-10438

7.5
    Sun.Net
  • Ehdr Ctms
Published: October 28, 2024

CVE-2024-10311

7.5
    Cmorillas1
  • External Database Based Actions
Published: November 15, 2024

CVE-2024-11981

7.5
    Billion Electric Router
Published: November 29, 2024

CVE-2025-24846

7.5
    FutureNet AS series (Industrial Routers) provided by Century Systems Co., Ltd
Published: March 3, 2025

CVE-2024-6635

7.3
    WooCommerce - Social Login plugin for WordPress
Published: July 20, 2024

CVE-2024-7027

7.3
    WooCommerce - PDF Vouchers plugin for WordPress
Published: July 24, 2024

CVE-2025-39535

7.2
    Appsbd
  • Vitepos
Published: April 17, 2025

CVE-2025-47941

7.2
    Typo3
  • Typo3
Published: May 20, 2025

CVE-2025-4687

7.2
    Teltonika
  • Remote Management System
Published: May 29, 2025

CVE-2025-1739

7.1
    Trivision Camera NC227WF
Published: February 27, 2025

CVE-2025-30112

7.1
    70mai
  • Dash Cam 1s
Published: March 24, 2025

CVE-2025-24332

7.1
    Nokia
  • Airscale Baseband
Published: July 2, 2025

CVE-2025-0549

6.8
    Gitlab
  • Gitlab
Published: May 9, 2025

CVE-2025-24456

6.7
    Jetbrains
  • Hub
Published: January 21, 2025

CVE-2024-5620

6.5
    PruvaSoft Informatics Apinizer Management Console
Published: July 18, 2024

CVE-2024-35151

6.5
    Ibm
  • Openpages Grc Platform
  • Openpages With Watson
Published: August 22, 2024

CVE-2025-6556

6.5
    Google
  • Chrome
Published: June 24, 2025

CVE-2024-13772

5.6
    Wordpress
  • Civi
Published: March 14, 2025

CVE-2025-53099

5.5
    Sentry
  • Sentry
Published: July 1, 2025

CVE-2024-52586

5.4
    eLabFTW
Published: December 9, 2024

CVE-2024-46887

5.3
    Siemens Web Server
Published: October 8, 2024

CVE-2024-50334

5.3
    Erudika
  • Scoold
Published: October 29, 2024

CVE-2024-33939

5.3
    Masteriyo
  • Masteriyo Lms
Published: May 19, 2025

CVE-2025-26700

5.2
    RoboForm Password Manager App for Android
Published: February 17, 2025

CVE-2025-48010

4.8
    Drupal
  • One Time Password
Published: May 21, 2025

CVE-2025-48011

4.8
    Drupal
  • One Time Password
Published: May 21, 2025

CVE-2025-6675

4.8
    Drupal
  • Enterprise Mfa
Published: June 26, 2025

CVE-2024-25036

4.3
    Ibm
  • Cognos Controller
Published: December 3, 2024

CVE-2024-51464

4.3
    IBM i
Published: December 21, 2024

CVE-2025-32357

4.3
    Zammad
  • Zammad
Published: April 5, 2025

CVE-2025-48926

4.3
    Telemessage
  • Telemessage
Published: May 28, 2025

CVE-2024-42178

2.5
    Hcl
  • Myxalytics
Published: April 17, 2025

CVE-2024-38279

None
    UNKNOWN
Published: June 13, 2024

CVE-2024-6684

None
    inohom Nova Panel N7
Published: August 12, 2024

CVE-2024-35214

None
    CylanceOPTICS for Windows
Published: August 20, 2024

CVE-2024-10490

None
    B&R mapp Cockpit
    B&R mapp View
    B&R mapp Services
    B&R mapp Motion
    B&R mapp Vision
Published: December 2, 2024

CVE-2025-23217

None
    mitmweb
Published: February 6, 2025

CVE-2025-29996

None
    *
  • Cap Back Office Application
Published: March 13, 2025

CVE-2025-2080

None
    Optigo Networks
  • Visual Bacnet Capture Tool
  • Visual Networks Capture Tool
Published: March 13, 2025

CVE-2025-31694

None
    Drupal
  • Two Factor Authentication
Published: March 31, 2025

CVE-2024-56325

None
    Apache
  • Controller
Published: April 1, 2025

CVE-2025-49125

None
    Apache
  • Tomcat
Published: June 16, 2025
Click here to see more Vulnerabilities