[webapps] TYPO3 11.5.24 – Path Traversal (Authenticated)
TYPO3 11.5.24 – Path Traversal (Authenticated)
Storing APFS password in Apple’s Keychain for Time Machine
If you are using an encrypted APFS container, for example, to encrypt the Time Machine, whenever the physical disk is plugged in, MacOS asks for a decryption password with an option to store it ("remember the password") in the ke…
CVE-2024-2002 | libdwarf DWARF Object double free
A vulnerability was found in libdwarf and classified as problematic. Affected by this issue is some unknown functionality of the component DWARF Object Handler. The manipulation leads to double free.
This vulnerability is handled as CVE-2024-2002. The…
CVE-2024-25591 | Benjamin Rojas WP Editor Plugin up to 1.2.7 on WordPress information disclosure
A vulnerability has been found in Benjamin Rojas WP Editor Plugin up to 1.2.7 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to information disclosure.
This vulnerability …
CVE-2024-27958 | Themeisle Visualizer Plugin up to 3.10.5 on WordPress cross site scripting
A vulnerability, which was classified as problematic, was found in Themeisle Visualizer Plugin up to 3.10.5 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2024-27958. …
CVE-2024-27957 | Pie Register Plugin up to 3.8.3.1 on WordPress unrestricted upload
A vulnerability, which was classified as critical, has been found in Pie Register Plugin up to 3.8.3.1 on WordPress. This issue affects some unknown processing. The manipulation leads to unrestricted upload.
The identification of this vulnerability is…
CVE-2024-27960 | I Thirteen Web Solution Email Subscription Popup Plugin up to 1.2.20 on WordPress cross site scripting
A vulnerability classified as problematic was found in I Thirteen Web Solution Email Subscription Popup Plugin up to 1.2.20 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross site scripting.
This vulnerability was n…
CVE-2024-27961 | Codekraft AntiSpam for Contact Form 7 Plugin up to 0.6.0 on WordPress cross site scripting
A vulnerability classified as problematic has been found in Codekraft AntiSpam for Contact Form 7 Plugin up to 0.6.0 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified …
CVE-2024-27959 | Wpexpertsio WC Shop Sync Plugin up to 4.2.9 on WordPress cross site scripting
A vulnerability was found in Wpexpertsio WC Shop Sync Plugin up to 4.2.9 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is handle…