CatchThemes Essential Widgets Plugin on WordPress access control
A vulnerability was found in CatchThemes Essential Widgets Plugin, To Top Plugin, Header Enhancement Plugin, Generate Child Theme Plugin, Essential
Anuko Timetracker up to 1.19.30.5600 Parameter browser_today cross site scripting
A vulnerability was found in Anuko Timetracker up to 1.19.30.5600. It has been declared as problematic. This vulnerability affects an
Backstage up to 0.15.8 Scaffolder Task path traversal
A vulnerability classified as problematic has been found in Backstage up to 0.15.8. This affects an unknown code block of
OpenOLAT up to 15.5.7/16.0.0 Folder path traversal
A vulnerability classified as critical was found in OpenOLAT up to 15.5.7/16.0.0. This vulnerability affects some unknown processing of the
SignalWirer Freeswitch up to 1.10.5 sofia.c sofia_handle_sip_i_notify information disclosure
A vulnerability was found in SignalWirer Freeswitch up to 1.10.5. It has been classified as problematic. Affected is the function
vm2 up to 3.9.3 Prototype sandbox
A vulnerability was found in vm2 up to 3.9.3. It has been declared as critical. Affected by this vulnerability is
IBM Business Automation Workflow 18.0/19.0/20.0/21.0 Web UI cross site scripting
A vulnerability was found in IBM Business Automation Workflow 18.0/19.0/20.0/21.0 (Automation Software). It has been declared as problematic. Affected by
LearnPress Plugin up to 4.1.3.0 on WordPress cross site scripting
A vulnerability was found in LearnPress Plugin up to 4.1.3.0 on WordPress (WordPress Plugin). It has been rated as problematic.
DearFlip Plugin up to 1.7.9 on WordPress Shortcode cross site scripting
A vulnerability classified as problematic has been found in DearFlip Plugin up to 1.7.9 on WordPress (WordPress Plugin). This affects
Compact WP Audio Player Plugin up to 1.9.6 on WordPress Shortcode cross site scripting
A vulnerability classified as problematic was found in Compact WP Audio Player Plugin up to 1.9.6 on WordPress (WordPress Plugin).
Compact WP Audio Player Plugin up to 1.9.6 on WordPress cross-site request forgery
A vulnerability, which was classified as problematic, has been found in Compact WP Audio Player Plugin up to 1.9.6 on
Shared Files Plugin up to 1.6.56 on WordPress Setting cross site scripting
A vulnerability, which was classified as problematic, was found in Shared Files Plugin up to 1.6.56 on WordPress (WordPress Plugin).
Tutor LMS Plugin up to 1.9.8 on WordPress Setting cross site scripting
A vulnerability has been found in Tutor LMS Plugin up to 1.9.8 on WordPress (WordPress Plugin) and classified as problematic.
Podcast Subscribe Buttons Plugin up to 1.4.1 on WordPress Post cross site scripting
A vulnerability was found in Podcast Subscribe Buttons Plugin up to 1.4.1 on WordPress (WordPress Plugin) and classified as problematic.
Gutenberg PDF Viewer Block Plugin up to 1.0.0 on WordPress cross site scripting
A vulnerability was found in Gutenberg PDF Viewer Block Plugin up to 1.0.0 on WordPress (Document Reader Software). It has
strongSwan up to 5.9.3 In-memory Certificate Cache integer overflow
A vulnerability, which was classified as critical, has been found in strongSwan up to 5.9.3 (Network Encryption Software). Affected by
strongSwan up to 5.9.3 gmp Plugin integer overflow
A vulnerability, which was classified as critical, was found in strongSwan up to 5.9.3 (Network Encryption Software). This affects some
Devolutions Remote Desktop Manager prior 2021.2.16 permission
A vulnerability has been found in Devolutions Remote Desktop Manager and classified as critical. This vulnerability affects an unknown function.
OWASP Java HTML Sanitizer prior 20211018.1 Element access control
A vulnerability was found in OWASP Java HTML Sanitizer (Programming Language Software) and classified as critical. This issue affects an
Customer Service Software & Support Ticket System Plugin Form cross site scripting
A vulnerability has been found in Customer Service Software & Support Ticket System Plugin up to 5.10.3 on WordPress (Ticket
One User Avatar Plugin up to 2.3.6 on WordPress Shortcode cross site scripting
A vulnerability was found in One User Avatar Plugin up to 2.3.6 on WordPress (WordPress Plugin) and classified as problematic.
One User Avatar Plugin up to 2.3.6 on WordPress cross-site request forgery
A vulnerability was found in One User Avatar Plugin up to 2.3.6 on WordPress (WordPress Plugin). It has been classified
pacemaker/cluster-glue stonith-ng commandline information disclosure
A vulnerability classified as problematic was found in pacemaker and cluster-glue (affected version unknown). Affected by this vulnerability is an
Action Pack 6.0.0 on Ruby on Rails Host Authorization Middleware redirect
A vulnerability, which was classified as problematic, has been found in Action Pack 6.0.0 on Ruby on Rails. Affected by