Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total563

Critical20

High112

Medium421

Search Severity Year Type Sort Order

Reset

Showing 561-563 of 563 records

Threat Entry Updated 2024-11-21

CVE-2021-24176 - Through 1 Plugin

The JH 404 Logger WordPress plugin through 1.1 doesn't sanitise the referer and path of 404 pages, when they are output in the dashboard, which leads to executing arbitrary JavaScript code in the WordPress dashboard.

PLUGIN Through 1

CVE-2021-24176

MEDIUM CVSS 5.4 2021-04-05

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24173 - Through 1 Plugin

The VM Backups WordPress plugin through 1.0 does not have CSRF checks, allowing attackers to make a logged in user unwanted actions, such as update the plugin's options, leading to a Stored Cross-Site Scripting issue.

PLUGIN Through 1

CVE-2021-24173

MEDIUM CVSS 6.1 2021-04-05

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24172 - Through 1 Plugin

The VM Backups WordPress plugin through 1.0 does not have CSRF checks, allowing attackers to make a logged in user unwanted actions, such as generate backups of the DB, plugins, and current .

PLUGIN Through 1

CVE-2021-24172

MEDIUM CVSS 4.3 2021-04-05

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2021-24176 - Through 1 Plugin

CVE-2021-24173 - Through 1 Plugin

CVE-2021-24172 - Through 1 Plugin

Company Links

Contact Us