Wordfence Intelligence Weekly WordPress Vulnerability Report (November 18, 2024 to November 24, 2024)

🦸 💥 Calling all superheroes and hunters! Introducing the End of Year Holiday Extravaganza and the WordPress Superhero Challenge for the Wordfence Bug Bounty Program! Through December 9th, 2024:

  • All in-scope vulnerability types for WordPress plugins/themes with >= 1,000 active installations are in-scope for ALL researchers
  • All plugins and themes with 50-999 active installs hosted in the WordPress.org repository and updated within the last 2 years are in-scope for all researchers!
  • Minimum bounty of $5 for all valid in-scope submissions.
  • All researchers earn automatic bonuses of between 5% to 180% for valid submissions
  • Pending report limits are increased for all
  • It’s possible to earn up to $31,200 for high impact vulnerabilities!

Last week, there were 236 vulnerabilities disclosed in 216 WordPress Plugins and 8 WordPress Themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 54 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabilities in this report now to ensure your site is not affected.

Our mission with Wordfence Intelligence is to make valuable vulnerability information easily accessible to everyone, like the WordPress community, so individuals and organizations alike can utilize that data to make the internet more secure. That is why the Wordfence Intelligence user interface, vulnerability API, webhook integration, and Wordfence CLI Vulnerability Scanner are all completely free to access and utilize both personally and commercially, and why we are running this weekly vulnerability report.

Enterprises, Hosting Providers, and even Individuals can use the Wordfence CLI Vulnerability Scanner to run regular vulnerability scans across the sites they protect. Or alternatively, utilize the vulnerability Database API to receive a complete dump of our database of over 20,000 vulnerabilities and then utilize the webhook integration to stay on top of the newest vulnerabilities added in real-time, as well as any updates made to the database, all for free.

Click here to sign-up for our mailing list to receive weekly vulnerability reports like this and important WordPress Security reports in your inbox the moment they are published.


New Firewall Rules Deployed Last Week

The Wordfence Threat Intelligence Team reviews each vulnerability to determine impact and severity, along with assessing the likelihood of exploitation, to verify that the Wordfence Firewall provides sufficient protection.

The team rolled out enhanced protection via firewall rules for the following vulnerabilities in real-time to our PremiumCare, and Response customers last week:

Wordfence PremiumCare, and Response customers received this protection immediately, while users still running the free version of Wordfence will receive this enhanced protection after a 30 day delay.


Total Unpatched & Patched Vulnerabilities Last Week

Patch Status Number of Vulnerabilities
Patched 126
Unpatched 110


Total Vulnerabilities by CVSS Severity Last Week

Severity Rating Number of Vulnerabilities
Medium Severity 186
High Severity 35
Critical Severity 15


Total Vulnerabilities by CWE Type Last Week

Vulnerability Type by CWE Number of Vulnerabilities
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 124
Cross-Site Request Forgery (CSRF) 31
Missing Authorization 29
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 11
Deserialization of Untrusted Data 8
Authorization Bypass Through User-Controlled Key 7
Exposure of Sensitive Information to an Unauthorized Actor 6
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') 5
Unrestricted Upload of File with Dangerous Type 5
Improper Control of Generation of Code ('Code Injection') 4
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 2
Authentication Bypass Using an Alternate Path or Channel 1
Improper Access Control 1
Improper Privilege Management 1
Protection Mechanism Failure 1


Researchers That Contributed to WordPress Security Last Week

Researcher Name Number of Vulnerabilities
43
24
22
17
15
15
8
7
6
5
5
5
UKO
4
4
4
3
3
2
2
2
2
2
Gab
2
2
2
2
2
1
1
FX
1
1
1
1
1
1
1
1
1
1
1
1
1
1
Leo
1
1
1
1
1
1
1
1
1
1
1

Are you a security researcher who would like to be featured in our weekly vulnerability report? You can responsibly disclose your WordPress vulnerability discoveries to us and earn a bounty on in-scope vulnerabilities through our Bug Bounty Program. Responsibly disclosing your vulnerability discoveries to us will also get your name added on the Wordfence Intelligence leaderboard along with being mentioned in our weekly vulnerability report.


WordPress Plugins with Reported Vulnerabilities Last Week

Software Name Software Slug
404 Solution 404-solution
Absolute Addons For Elementor absolute-addons
Activity Log – Monitor & Record User Changes aryo-activity-log
Advanced Event Manager advanced-event-manager
affiliate-toolkit – WP Affiliate Plugin with Amazon affiliate-toolkit-starter
Ahmeti Wp Güzel Sözler ahmeti-wp-guzel-sozler
AI Quiz | Quiz Maker ai-quiz
AI Responsive Gallery Album ai-responsive-gallery-album
Ajax Search Lite – Live Search & Filter ajax-search-lite
amr shortcodes amr-shortcodes
Announcement & Notification Banner – Bulletin bulletin-announcements
Anonymous Restricted Content anonymous-restricted-content
April's Call Posts aprils-call-posts
AtaraPay WooCommerce Payment Gateway atarapay-woocommerce
AutoListicle: Automatically Update Numbered List Articles autolisticle-automatically-update-numbered-list-articles
Awesome Studio awesome-studio
Banner System banner-system
Bard Extra bard-extra
Beds24 Online Booking beds24-online-booking
Blizzard Quotes blizzard-quotes
Booster for WooCommerce woocommerce-jetpack
Branda – Branda – White Label & Branding, Custom Login Page Customizer branda-white-labeling
Button Block – Get fully customizable & multi-functional buttons button-block
Buying Buddy IDX CRM buying-buddy-idx-crm
Chameleoni Jobs chameleon-jobs
Checkout with Cash App on WooCommerce wc-cashapp
Chessgame Shizzle chessgame-shizzle
Classified Listing – Classified ads & Business Directory Plugin classified-listing
Clone wp-clone-by-wp-academy
Co-marquage service-public.fr co-marquage-service-public
Community by PeepSo – Download from PeepSo.com peepso-core
Contact Form 7 Email Add on cf7-email-add-on
Contact Page With Google Map contact-page-with-google-map
Continue Shopping From Cart continue-shopping-from-cart-page
Control horas control-horas
Crypto and DeFi Widgets – Web3 Cryptocurrency Shortcodes security-force
Custom CSS, JS & PHP custom-css
Custom Shortcode Sidebars custom-shortcode-sidebars
de:branding debranding
DeBounce Email Validator debounce-io-email-validator
Dino Game – Embed Google Chrome Dinosaur Game in your website dino-game
Distance Based Shipping Calculator distance-based-shipping-calculator
Document & Data Automation document-data-automation
Dynamic "To Top" Plugin dynamic-to-top
Dynamic URL SEO dynamic-url-seo
Easiest Funnel Builder For WordPress & WooCommerce by WPFunnels wpfunnels
Easy Liveblogs easy-liveblogs
Elementor Portfolio Builder portfolio-builder-elementor
Elfsight Telegram Chat CC elfsight-telegram-chat-cc
Email Subscription Popup email-subscribe
Enter Addons – Ultimate Template Builder for Elementor enteraddons
Explara Events explara-events
Extensions for Elementor extensions-for-elementor
F4 Improvements f4-improvements
Favicon My Blog favicon-my-blog
Fediverse Embeds fediverse-embeds
Feeds For Twitter easy-twitter-feeds
Fence URL wp-login.php fence-url
Fintelligence Calculator fintelligence-calculator
FireCask’s Twitter Follow Button twitter-follow
Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder fluentform
FluentSMTP – WP SMTP Plugin with Amazon SES, SendGrid, MailGun, Postmark, Google and Any SMTP Provider fluent-smtp
Footer Flyout Widget footer-flyout-widget
Formidable Forms – Contact Form Plugin, Survey, Quiz, Payment, Calculator Form & Custom Form Builder formidable
Friendly Functions for Welcart friendly-functions-for-welcart
Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and Lightbox for native gallery simply-gallery-block
GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress gamipress
GD bbPress Attachments gd-bbpress-attachments
GD Rating System gd-rating-system
Generic Elements generic-elements-for-elementor
Geolocator geolocator
Getwid – Gutenberg Blocks getwid
Google for WooCommerce google-listings-and-ads
Google Plus Share and +1 Button google-plus-share-and-plusone-button
GoQMieruca goqmieruca
GoQSmile goqsmile
Grey Owl Lightbox grey-owl-lightbox
Grid View Gallery grid-view-gallery
Gutenberg Blocks with AI by Kadence WP – Page Builder Features kadence-blocks
HIPAA Compliant Forms with Drag’n’Drop HIPAA Form Builder. Sign HIPAA documents hipaatizer
Hotlink2Watermark hotlink2watermark
HTML5 Lyrics Karaoke Player html5-lyrics-karaoke-player
HUSKY – Products Filter Professional for WooCommerce woocommerce-products-filter
IceStats icestats
Idealien Category Enhancements idealien-category-enhancements
If-So Dynamic Content Personalization if-so
Image horizontal reel scroll slideshow image-horizontal-reel-scroll-slideshow
Image Optimizer, Resizer and CDN – Sirv sirv
Image Widget image-widget
ImbaChat imbachat-widget
Include Mastodon Feed include-mastodon-feed
Infinite Slider infinite-slider
iPhone Webclip Manager iphone-webclip-manager
ITERAS iteras
JobBoardWP – Job Board Listings and Submissions jobboardwp
Kevin's Plugin kevins-plugin
LA-Studio Element Kit for Elementor lastudio-element-kit
Lazy load videos and sticky control lazy-load-videos-and-sticky-control
LeadBoxer leadboxer
LeanPress leanpress
LearnPress – WordPress LMS Plugin learnpress
LGPD Framework By Data443 lgpd-framework
Library Bookshelves library-bookshelves
LinkLaunder SEO linklaunder-seo-plugin
Lock User Account lock-user-account
LSX Tour Operator tour-operator
MailChimp Forms by MailMunch mailchimp-forms-by-mailmunch
MailMunch – Grow your Email List mailmunch
MaxUploader – Increase Media Upload File Size | Increase Execution Time wp-maximum-upload-file-size
Memberlite Shortcodes memberlite-shortcodes
Meteor Slides meteor-slides
MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar mp3-music-player-by-sonaar
MP3 Sticky Player fwdmsp
MStore API – Create Native Android & iOS Apps On The Cloud mstore-api
Multi Feed Reader multi-feed-reader
My Contador lesr my-contador-wp
nBlocks – Responsive Gutenberg News Blocks nblocks
Office Locator office-locator
Opal Woo Custom Product Variation opal-woo-custom-product-variation
Open edX LMS and WordPress integrator (LITE) edunext-openedx-integrator
Ortto autopilot
Page Parts page-parts
Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress wp-user-avatar
Parallax Image parallax-image
Pathomation pathomation
Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net peachpay-for-woocommerce
PDF Invoices & Packing Slips Generator for WooCommerce pdf-invoicing-for-woocommerce
Popup Builder – Create highly converting, mobile friendly marketing popups. popup-builder
Post By Email post-by-email
Post Hits Counter hits-counter
Post Ideas post-ideas
Premium Packages – Sell Digital Products Securely wpdm-premium-packages
Pricing table addon for elementor pricing-table-addon-for-elementor
Product Designer product-designer
Product Table for WooCommerce by CodeAstrology (wooproducttable.com) woo-product-table
ProfileGrid – User Profiles, Groups and Communities profilegrid-user-profiles-groups-and-communities
Protect Your Content protect-your-content
PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes revisionary
Pure CSS Circle Progress bar pure-css-circle-progress-bar
QRMenu Restaurant QR Menu Lite qrmenu-lite
Quick Learn quick-learn
Quotes llama quotes-llama
Rank Math SEO – AI SEO Tools to Dominate SEO Rankings seo-by-rank-math
RealtyCandy IDX Broker Extended realtycandy-idx-broker-extended
RecipePress Reloaded recipepress-reloaded
Request a Quote for WooCommerce and Elementor – Get a Quote Button – Product Enquiry Form Popup – Product Quotation get-a-quote-button-for-woocommerce
Rescue Shortcodes rescue-shortcodes
Restaurant Menu – Food Ordering System – Table Reservation menu-ordering-reservations
Run Contests, Raffles, and Giveaways with ContestsWP contest-code-checker
salavat counter Plugin salavat-counter
Save as PDF Plugin by Pdfcrowd save-as-pdf-by-pdfcrowd
School Management System for Wordpress school-management
Shine PDF Embeder shine-pdf
Shopready – Elementor addons for WooCommerce Page Builder shopready-elementor-addon
Silverlight Video Player smooth-streaming-player
Simple Membership simple-membership
Simple Travel Map simple-travel-map
Sky Addons for Elementor (Free Templates Library, Live Copy, Animations, Post Grid, Post Carousel, Particles, Sliders, Chart, Blog, Video Gallery) sky-elementor-addons
Slick Sitemap slick-sitemap
Slotti Ajanvaraus slotti-ajanvaraus
Social Login oa-social-login
SP Blog Designer sp-blog-designer
Sticky Social Icons sticky-social-icons
Stratum – Elementor Widgets stratum
StreamWeasels Online Status Bar stream-status-for-twitch
Subaccounts for WooCommerce subaccounts-for-woocommerce
SuevaFree Essential Kit suevafree-essential-kit
Sugar Calendar – Event Calendar, Event Tickets, and Event Management Platform sugar-calendar-lite
SVG Block svg-block
System Dashboard system-dashboard
Tailored Tools tailored-tools
Team Rosters team-rosters
The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce the-plus-addons-for-elementor-page-builder
Theater for WordPress theatre
Theme Builder For Elementor theme-builder-for-elementor
TM Islamic Helper tm-islamic-helper
Tribute Testimonials – WordPress Testimonial Grid/Slider tribute-testimonial-gridslider
Tutor LMS – eLearning and online course solution tutor
Ultimate Blocks – WordPress Blocks Plugin ultimate-blocks
Ultimate Classified Listings ultimate-classified-listings
Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin ultimate-member
Ultimate YouTube Video & Shorts Player With Vimeo ultimate-youtube-video-player
UltraAddons – Elementor Addons (Header Footer Builder, Custom Font, Custom CSS,Woo Widget, Menu Builder, Anywhere Elementor Shortcode) ultraaddons-elementor-lite
User registration & user profile – UserPlus userplus
Wawp OTP Verification, Order Notifications, and Country Code Selector for WooCommerce automation-web-platform
Wc Recently viewed products wc-recently-viewed-products
Weather Atlas Widget weather-atlas
What Would Seth Godin Do what-would-seth-godin-do
WIP Incoming Lite wip-incoming-lite
Wishlist for WooCommerce: Multi Wishlists Per Customer PRO wish-list-for-woocommerce-pro
WooCommerce Price Alert price-alert-woocommerce
WooCommerce Product Table Lite wc-product-table-lite
WordPress Bootscraper wp-bootscraper
WordPress Brute Force Protection – Stop Brute Force Attacks guardgiant
wp auto top wp-auto-top
WP e-Commerce Style Email wp-e-commerce-style-email
WP Mailster wp-mailster
WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts wedevs-project-manager
WP Travel Engine – Tour Booking Plugin – Tour Operator Software wp-travel-engine
WP User Manager – User Profile Builder & Membership wp-user-manager
WP-ISPConfig 3 wp-ispconfig3
WP-Orphanage Extended wp-orphanage-extended
WPAdverts – Classifieds Plugin wpadverts
WPB Popup for Contact Form 7 – Showing The Contact Form 7 Popup on Button Click – CF7 Popup wpb-popup-for-contact-form-7
WPBakery Visual Composer WHMCS Elements void-visual-whmcs-element
WPDash Notes wpdash-notes
WPGYM - Wordpress Gym Management System gym-management
Xpresslane Fast Checkout xpresslane-integration-for-woocommerce
Yaad Sarig Payment Gateway For WC yaad-sarig-payment-gateway-for-wc
Youneeq Recommendations youneeq-panel
yPHPlista yphplista
Zajax – Ajax Navigation zajax-ajax-navigation
Экспресс Платежи платежный модуль express-pay
우커머스 네이버페이 mshop-npay
워드프레스 결제 심플페이 – 우커머스 결제 플러그인 pgall-for-woocommerce
코드엠샵 소셜톡 mshop-naver-talktalk


WordPress Themes with Reported Vulnerabilities Last Week

Software Name Software Slug
AccessPress Staple accesspress-staple
Ashe ashe
Bard bard
ForumEngine forumengine
Gaga Lite gaga-lite
Grip grip
jobify jobify
One Paze one-paze


Vulnerability Details

Please note that if you run the Wordfence plugin on your WordPress site, with the scanner enabled, you should’ve already been notified if your site was affected by any of these vulnerabilities. If you’d like to receive real-time notifications whenever a vulnerability is added to the Wordfence Intelligence Vulnerability Database, check out our Slack and HTTP Webhook Integration, which is completely free to utilize.

CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52449
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
WordPress Bootscraper
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52447
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Contact Page With Google Map
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52476
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
Fediverse Embeds
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52443
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Geolocator
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52444
Patch Status
Patched
Published
Nov 18, 2024
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52490
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Pathomation
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52441
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Quick Learn
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-9659
Patch Status
Patched
Published
Nov 22, 2024
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-10961
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Social Login
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52439
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Team Rosters
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52442
Patch Status
Unpatched
Published
Nov 18, 2024
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52475
Patch Status
Patched
Published
Nov 19, 2024
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-9942
Patch Status
Patched
Published
Nov 22, 2024
Researcher
CVSS Rating
Critical (9.8)
CVE-ID
CVE-2024-52440
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Xpresslane Fast Checkout
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52496
Patch Status
Unpatched
Published
Nov 20, 2024
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52437
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Banner System
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52446
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Buying Buddy IDX CRM
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-10913
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
Clone
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-10898
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Contact Form 7 Email Add on
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52438
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
de:branding
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-10873
Patch Status
Patched
Published
Nov 22, 2024
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52488
Patch Status
Unpatched
Published
Nov 20, 2024
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52450
Patch Status
Unpatched
Published
Nov 18, 2024
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52501
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Office Locator
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52499
Patch Status
Unpatched
Published
Nov 20, 2024
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52445
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
QRMenu Restaurant QR Menu Lite
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-9660
Patch Status
Patched
Published
Nov 22, 2024
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52497
Patch Status
Unpatched
Published
Nov 20, 2024
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52498
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
SP Blog Designer
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-52448
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Ultimate Classified Listings
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-11415
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
WP-Orphanage Extended
Researcher
CVSS Rating
High (8.8)
CVE-ID
CVE-2024-9941
Patch Status
Patched
Published
Nov 22, 2024
Researcher
CVSS Rating
High (8.2)
CVE-ID
CVE-2024-52481
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
jobify
Researcher
CVSS Rating
High (7.5)
CVE-ID
CVE-2024-52474
Patch Status
Patched
Published
Nov 19, 2024
CVSS Rating
High (7.5)
CVE-ID
CVE-2024-10803
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
MP3 Sticky Player
Researcher
CVSS Rating
High (7.5)
CVE-ID
CVE-2024-52451
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Post Ideas
CVSS Rating
High (7.5)
CVE-ID
CVE-2024-10400
Patch Status
Patched
Published
Nov 20, 2024
CVSS Rating
High (7.3)
CVE-ID
CVE-2024-10899
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
WooCommerce Product Table Lite
Researcher
CVSS Rating
High (7.2)
CVE-ID
CVE-2024-10788
Patch Status
Patched
Published
Nov 20, 2024
CVSS Rating
High (7.2)
CVE-ID
CVE-2024-11409
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Grid View Gallery
Researcher
CVSS Rating
High (7.2)
CVE-ID
CVE-2024-11620
Patch Status
Patched
Published
Nov 22, 2024
CVSS Rating
High (7.2)
CVE-ID
CVE-2024-11107
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
System Dashboard
Researcher
CVSS Rating
Medium (6.5)
CVE-ID
CVE-2024-53708
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
AI Quiz | Quiz Maker
Researcher
CVSS Rating
Medium (6.5)
CVE-ID
CVE-2024-52495
Patch Status
Unpatched
Published
Nov 20, 2024
CVSS Rating
Medium (6.5)
CVE-ID
CVE-2024-11179
Patch Status
Patched
Published
Nov 19, 2024
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-53721
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Advanced Event Manager
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-10177
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Beds24 Online Booking
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11381
Patch Status
Unpatched
Published
Nov 21, 2024
Affected Software
Control horas
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11387
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Easy Liveblogs
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-52486
Patch Status
Unpatched
Published
Nov 19, 2024
Affected Software
Elementor Portfolio Builder
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-10390
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Elfsight Telegram Chat CC
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11195
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
Email Subscription Popup
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-9442
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
F4 Improvements
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-53731
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
Fintelligence Calculator
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11198
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
GD Rating System
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-53709
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Generic Elements
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-10872
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
Getwid – Gutenberg Blocks
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11440
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Grey Owl Lightbox
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-52502
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
ImbaChat
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11455
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Include Mastodon Feed
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-52478
Patch Status
Unpatched
Published
Nov 19, 2024
Affected Software
jobify
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11428
Patch Status
Unpatched
Published
Nov 20, 2024
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-9851
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
LSX Tour Operator
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11227
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Memberlite Shortcodes
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11224
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
Parallax Image
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-9111
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Product Designer
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11385
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Pure CSS Circle Progress bar
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-10874
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Quotes llama
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11414
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
RecipePress Reloaded
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11199
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Rescue Shortcodes
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-10891
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
Save as PDF Plugin by Pdfcrowd
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11412
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Shine PDF Embeder
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11424
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Slick Sitemap
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11408
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Slotti Ajanvaraus
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11438
Patch Status
Patched
Published
Nov 20, 2024
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11432
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
SuevaFree Essential Kit
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-52503
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Tailored Tools
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-10116
Patch Status
Patched
Published
Nov 22, 2024
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-10678
Patch Status
Patched
Published
Nov 22, 2024
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-52487
Patch Status
Unpatched
Published
Nov 19, 2024
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-53737
Patch Status
Patched
Published
Nov 23, 2024
Affected Software
WP Mailster
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11231
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
우커머스 네이버페이
Researcher
CVSS Rating
Medium (6.4)
CVE-ID
CVE-2024-11229
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
코드엠샵 소셜톡
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11277
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
404 Solution
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10675
Patch Status
Patched
Published
Nov 20, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52467
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
AI Responsive Gallery Album
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52464
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
amr shortcodes
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-9777
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
Ashe
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52460
Patch Status
Unpatched
Published
Nov 18, 2024
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52456
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Awesome Studio
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-9830
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
Bard
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-53729
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
Blizzard Quotes
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-9239
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
Booster for WooCommerce
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10682
Patch Status
Patched
Published
Nov 20, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52459
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Chameleoni Jobs
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-9635
Patch Status
Patched
Published
Nov 22, 2024
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11446
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Chessgame Shizzle
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10522
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Co-marquage service-public.fr
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11365
Patch Status
Unpatched
Published
Nov 20, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11330
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Custom CSS, JS & PHP
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11463
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
DeBounce Email Validator
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52470
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
Dynamic URL SEO
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52466
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Explara Events
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52471
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Extensions for Elementor
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-53732
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
Footer Flyout Widget
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10623
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
ForumEngine
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10726
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Friendly Functions for Welcart
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11278
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
GD bbPress Attachments
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52454
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
GoQMieruca
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52455
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
GoQSmile
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10869
Patch Status
Unpatched
Published
Nov 22, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52473
Patch Status
Unpatched
Published
Nov 18, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52461
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Infinite Slider
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-53735
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
iPhone Webclip Manager
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10880
Patch Status
Patched
Published
Nov 22, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52468
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
LeadBoxer
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52483
Patch Status
Unpatched
Published
Nov 19, 2024
Affected Software
LeanPress
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52465
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
LGPD Framework By Data443
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52453
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
Library Bookshelves
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-53727
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
LinkLaunder SEO
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-8726
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
MailChimp Forms by MailMunch
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-8735
Patch Status
Patched
Published
Nov 21, 2024
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52452
Patch Status
Unpatched
Published
Nov 18, 2024
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52482
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
Ortto
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11360
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Page Parts
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11361
Patch Status
Patched
Published
Nov 22, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52463
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Post By Email
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-53725
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Post Hits Counter
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11225
Patch Status
Unpatched
Published
Nov 21, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-53728
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
Protect Your Content
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-9653
Patch Status
Patched
Published
Nov 19, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11456
Patch Status
Patched
Published
Nov 20, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11435
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
salavat counter Plugin
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11370
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Subaccounts for WooCommerce
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10878
Patch Status
Patched
Published
Nov 19, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11371
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Theater for WordPress
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52458
Patch Status
Unpatched
Published
Nov 18, 2024
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52484
Patch Status
Unpatched
Published
Nov 19, 2024
Affected Software
Wc Recently viewed products
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52472
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
Weather Atlas Widget
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-11416
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
WIP Incoming Lite
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52469
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
WooCommerce Price Alert
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52462
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
WP e-Commerce Style Email
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-10890
Patch Status
Patched
Published
Nov 20, 2024
Researcher
CVSS Rating
Medium (6.1)
CVE-ID
CVE-2024-52457
Patch Status
Unpatched
Published
Nov 18, 2024
CVSS Rating
Medium (5.5)
CVE-ID
CVE-2024-11098
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
SVG Block
Researcher
CVSS Rating
Medium (5.4)
CVE-ID
CVE-2024-53730
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
April's Call Posts
Researcher
CVSS Rating
Medium (5.4)
CVE-ID
CVE-2024-53714
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Continue Shopping From Cart
Researcher
CVSS Rating
Medium (5.4)
CVE-ID
CVE-2024-53736
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
Custom Shortcode Sidebars
Researcher
CVSS Rating
Medium (5.4)
CVE-ID
CVE-2024-53733
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
Fence URL wp-login.php
Researcher
CVSS Rating
Medium (5.4)
CVE-ID
CVE-2024-53734
Patch Status
Unpatched
Published
Nov 23, 2024
Affected Software
Idealien Category Enhancements
Researcher
CVSS Rating
Medium (5.4)
CVE-ID
CVE-2024-53720
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
WP-ISPConfig 3
Researcher
CVSS Rating
Medium (5.4)
CVE-ID
CVE-2024-10665
Patch Status
Patched
Published
Nov 19, 2024
Researcher
CVSS Rating
Medium (5.4)
CVE-ID
CVE-2024-53717
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
yPHPlista
Researcher
CVSS Rating
Medium (5.3)
CVE-ID
CVE-2024-11089
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Anonymous Restricted Content
Researcher
CVSS Rating
Medium (5.3)
CVE-ID
CVE-2024-10486
Patch Status
Patched
Published
Nov 18, 2024
Affected Software
Google for WooCommerce
Researcher
CVSS Rating
Medium (5.3)
CVE-ID
CVE-2024-52480
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
jobify
Researcher
CVSS Rating
Medium (5.3)
CVE-ID
CVE-2024-11088
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Simple Membership
Researcher
CVSS Rating
Medium (5.3)
CVE-ID
CVE-2024-10393
Patch Status
Patched
Published
Nov 20, 2024
CVSS Rating
Medium (4.9)
CVE-ID
CVE-2024-10708
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
System Dashboard
Researcher
CVSS Rating
Medium (4.7)
CVE-ID
CVE-2024-53722
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Favicon My Blog
Researcher
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-10568
Patch Status
Patched
Published
Nov 21, 2024
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-52494
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Dynamic "To Top" Plugin
Researcher
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-9651
Patch Status
Patched
Published
Nov 18, 2024
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-52492
Patch Status
Unpatched
Published
Nov 20, 2024
Researcher
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-10939
Patch Status
Patched
Published
Nov 22, 2024
Affected Software
Image Widget
Researcher
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-12581
Patch Status
Patched
Published
Nov 21, 2024
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-10010
Patch Status
Patched
Published
Nov 21, 2024
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-52493
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Meteor Slides
Researcher
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-9428
Patch Status
Patched
Published
Nov 21, 2024
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-52491
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Sticky Social Icons
Researcher
CVSS Rating
Medium (4.4)
CVE-ID
CVE-2024-51900
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
What Would Seth Godin Do
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53707
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Ahmeti Wp Güzel Sözler
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-10532
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Bard Extra
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-52477
Patch Status
Patched
Published
Nov 19, 2024
Affected Software
Document & Data Automation
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-10666
Patch Status
Unpatched
Published
Nov 21, 2024
Affected Software
Feeds For Twitter
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53723
Patch Status
Unpatched
Published
Nov 22, 2024
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53711
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Hotlink2Watermark
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53724
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
IceStats
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-10796
Patch Status
Patched
Published
Nov 20, 2024
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53710
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
ITERAS
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-52479
Patch Status
Unpatched
Published
Nov 18, 2024
Affected Software
jobify
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53712
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Kevin's Plugin
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53718
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Multi Feed Reader
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-11334
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
My Contador lesr
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53726
Patch Status
Unpatched
Published
Nov 22, 2024
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53713
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Silverlight Video Player
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53715
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Simple Travel Map
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-10316
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Stratum – Elementor Widgets
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-10782
Patch Status
Patched
Published
Nov 20, 2024
Affected Software
Theme Builder For Elementor
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-11355
Patch Status
Unpatched
Published
Nov 21, 2024
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53716
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
wp auto top
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-11265
Patch Status
Patched
Published
Nov 22, 2024
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-9223
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
WPDash Notes
Researcher
CVSS Rating
Medium (4.3)
CVE-ID
CVE-2024-53719
Patch Status
Unpatched
Published
Nov 22, 2024
Affected Software
Zajax – Ajax Navigation
Researcher
CVSS Rating
Medium (4.2)
CVE-ID
CVE-2024-11197
Patch Status
Unpatched
Published
Nov 20, 2024
Affected Software
Lock User Account
Researcher


As a reminder, Wordfence has curated an industry leading vulnerability database with all known WordPress core, theme, and plugin vulnerabilities known as Wordfence Intelligence.

This database is continuously updated, maintained, and populated by Wordfence’s highly credentialed and experienced vulnerability researchers through in-house vulnerability research, vulnerability researchers submitting directly to us through our Bug Bounty Program, and by monitoring varying sources to capture all publicly available WordPress vulnerability information and adding additional context where we can.

Click here to sign-up for our mailing list to receive weekly vulnerability reports like this and important WordPress Security reports in your inbox the moment they are published.

Did you enjoy this post? Share it!

Comments

No Comments