Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3,044
Critical0
High3,044
Medium0
Reset
Showing 1581-1600 of 3044 records
Threat Entry Updated 2024-12-12

CVE-2024-11689 - Hq Rental Software Plugin

The HQ Rental Software plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.29. This is due to missing or incorrect nonce validation on the displaySettingsPage() function. This makes it possible for unauthenticated attackers to update arbitrary options that can be leveraged for privilege escalation via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

PLUGIN Hq Rental Software

CVE-2024-11689

HIGH CVSS 8.8 2024-12-12
Open Full Technical Breakdown
Threat Entry Updated 2024-12-12

CVE-2024-11443 - Debranding Plugin

The de:branding plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the debranding_save() function in all versions up to, and including, 1.0.2. This makes it possible for authenticated attackers, with subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.

PLUGIN Debranding

CVE-2024-11443

HIGH CVSS 8.8 2024-12-12
Open Full Technical Breakdown
Threat Entry Updated 2024-12-12

CVE-2024-10111 - Miniorange Login With Eve Online Google Facebook Plugin

The OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 6.26.3. This is due to insufficient verification on the user being returned by the social login token. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the username and the user does not have an already-existing account for the service returning the token.

PLUGIN Miniorange Login With Eve Online Google Facebook

CVE-2024-10111

HIGH CVSS 8.1 2024-12-12
Open Full Technical Breakdown
Threat Entry Updated 2024-12-11

CVE-2024-11840 - Optimize Web Vitals Automatically Plugin

The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to unauthorized access of data and modification of data due to a missing capability check on the uucss_data, update_rapidload_settings, wp_ajax_update_htaccess_file, uucss_update_rule, upload_rules, get_all_rules, update_titan_settings, preload_page, and activate_module functions in all versions up to, and including, 2.4.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to modify plugin settings or conduct SQL injection attacks.

PLUGIN Optimize Web Vitals Automatically

CVE-2024-11840

HIGH CVSS 7.1 2024-12-11
Open Full Technical Breakdown
Threat Entry Updated 2024-12-10

CVE-2024-10959 - Profit Products Tables For Woocommerce Plugin

The The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to arbitrary shortcode execution via woot_get_smth AJAX action in all versions up to, and including, 1.0.6.5. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

PLUGIN Profit Products Tables For Woocommerce

CVE-2024-10959

HIGH CVSS 7.3 2024-12-10
Open Full Technical Breakdown
Threat Entry Updated 2025-02-24

CVE-2023-6947 - Foogallery Plugin

The Best WordPress Gallery Plugin – FooGallery plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.4.26. This makes it possible for authenticated attackers, with contributor level or higher to read the contents of arbitrary folders on the server, which can contain sensitive information such as folder structure.

PLUGIN Foogallery

CVE-2023-6947

HIGH CVSS 7.7 2024-12-10
Open Full Technical Breakdown
Threat Entry Updated 2025-08-12

CVE-2024-11205 - Wpforms Plugin

The WPForms plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wpforms_is_admin_page' function in versions starting from 1.8.4 up to, and including, 1.9.2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to refund payments and cancel subscriptions.

PLUGIN Wpforms

CVE-2024-11205

HIGH CVSS 8.5 2024-12-10
Open Full Technical Breakdown
Threat Entry Updated 2024-12-07

CVE-2024-11501 - Multi Gallery Plugin

The Gallery plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3 via deserialization of untrusted input from wd_gallery_$id parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.

PLUGIN Multi Gallery

CVE-2024-11501

HIGH CVSS 8.8 2024-12-07
Open Full Technical Breakdown
Threat Entry Updated 2024-12-07

CVE-2024-12270 - Beautiful Taxonomy Filters Plugin

The Beautiful taxonomy filters plugin for WordPress is vulnerable to SQL Injection via the 'selects[0][term]' parameter in all versions up to, and including, 2.4.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Beautiful Taxonomy Filters

CVE-2024-12270

HIGH CVSS 7.5 2024-12-07
Open Full Technical Breakdown
Threat Entry Updated 2024-12-10

CVE-2024-11010 - Fileorganizer Plugin

The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to Local JavaScript File Inclusion in all versions up to, and including, 1.1.4 via the 'default_lang' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and execute arbitrary JavaScript files on the server, allowing the execution of any JavaScript code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and…

PLUGIN Fileorganizer

CVE-2024-11010

HIGH CVSS 7.2 2024-12-07
Open Full Technical Breakdown
Threat Entry Updated 2024-12-06

CVE-2024-10516 - Swift Performance Lite Plugin

The Swift Performance Lite plugin for WordPress is vulnerable to Local PHP File Inclusion in all versions up to, and including, 2.3.7.1 via the 'ajaxify' function. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included.

PLUGIN Swift Performance Lite

CVE-2024-10516

HIGH CVSS 8.1 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2024-12-06

CVE-2024-11289 - Soledad Theme

The Soledad theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.5.9 via several functions like penci_archive_more_post_ajax_func, penci_more_post_ajax_func, and penci_more_featured_post_ajax_func. This makes it possible for unauthenticated attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where PHP files can be uploaded and included. The exploitability of this is limited to Windows.

THEME Soledad

CVE-2024-11289

HIGH CVSS 8.1 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2025-02-05

CVE-2024-11728 - Kivicare Plugin

The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to SQL Injection via the 'visit_type[service_id]' parameter of the tax_calculated_data AJAX action in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Kivicare

CVE-2024-11728

HIGH CVSS 7.5 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2024-12-06

CVE-2024-11460 - Verowa Connect Plugin

The Verowa Connect plugin for WordPress is vulnerable to SQL Injection via the 'search_string' parameter in all versions up to, and including, 3.0.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Verowa Connect

CVE-2024-11460

HIGH CVSS 7.5 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2024-12-06

CVE-2024-11323 - Ai Quiz Plugin

The AI Quiz | Quiz Maker plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ai_quiz_update_style() function in all versions up to, and including, 1.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.

PLUGIN Ai Quiz

CVE-2024-11323

HIGH CVSS 8.8 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2024-12-06

CVE-2024-11178 - Otp Login Plugin

The Login With OTP plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.4.2. This is due to the plugin generating too weak OTP, and there’s no attempt or time limit. This makes it possible for unauthenticated attackers to generate and brute force the 6-digit numeric OTP that makes it possible to log in as any existing user on the site, such as an administrator, if they have access to the email.

PLUGIN Otp Login

CVE-2024-11178

HIGH CVSS 8.1 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2024-12-06

CVE-2024-10578 - Pubnews Theme

The Pubnews theme for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the pubnews_importer_plugin_action_for_notice() function in all versions up to, and including, 1.0.7. This makes it possible for authenticated attackers, with Subscriber-level access and above, to install arbitrary plugins that can be leveraged to exploit other vulnerabilities.

THEME Pubnews

CVE-2024-10578

HIGH CVSS 8.8 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2024-12-06

CVE-2024-11585 - Wp Hide Security Enhancer Plugin

The WP Hide & Security Enhancer plugin for WordPress is vulnerable to arbitrary file contents deletion due to a missing authorization and insufficient file path validation in the file-process.php in all versions up to, and including, 2.5.1. This makes it possible for unauthenticated attackers to delete the contents of arbitrary files on the server, which can break the site or lead to data loss.

PLUGIN Wp Hide Security Enhancer

CVE-2024-11585

HIGH CVSS 7.5 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2025-07-09

CVE-2024-10247 - Video Gallery Plugin

The Video Gallery – Best WordPress YouTube Gallery Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the orderby parameter in all versions up to, and including, 2.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Video Gallery

CVE-2024-10247

HIGH CVSS 7.2 2024-12-06
Open Full Technical Breakdown
Threat Entry Updated 2024-12-05

CVE-2024-11429 - Stars Testimonials With Slider And Masonry Grid Plugin

The Free Responsive Testimonials, Social Proof Reviews, and Customer Reviews – Stars Testimonials plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.3.3 via the 'stars-testimonials-with-slider-and-masonry-grid' shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrary PHP files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where PHP files can be uploaded and…

PLUGIN Stars Testimonials With Slider And Masonry Grid

CVE-2024-11429

HIGH CVSS 8.8 2024-12-05
Open Full Technical Breakdown
Scroll to top