Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
para vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-3525
The Getnet Argentina para Woocommerce plugin for WordPress is vulnerable to authorization bypass due to missing validation on the 'webhook' function in versions up to, and including, 0.0.4. This makes it possible for unauthenticated malicious users to set their payment ...
Getnet Argentina Para Woocommerce Project Getnet Argentina Para Woocommerce
7.5
CVSSv2
CVE-2022-0814
The Ubigeo de Perú para Woocommerce WordPress plugin prior to 3.6.4 does not properly sanitise and escape some parameters before using them in SQL statements via various AJAX actions, some of which are available to unauthenticated users, leading to SQL Injections
Ubigeo De Peru Para Woocommerce Project Ubigeo De Peru Para Woocommerce
5
CVSSv2
CVE-2014-10397
The Antioch theme through 2014-09-07 for WordPress allows arbitrary file downloads via the file parameter to lib/scripts/download.php.
Para Antioch
4.3
CVSSv2
CVE-2022-1782
Cross-site Scripting (XSS) - Generic in GitHub repository erudika/para prior to v1.45.11.
Erudika Para
4.3
CVSSv2
CVE-2022-1848
Business Logic Errors in GitHub repository erudika/para before 1.45.11.
Erudika Para
NA
CVE-2022-47589
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in this.Functional CTT Expresso para WooCommerce plugin <= 3.2.11 versions.
Thisfunctional Ctt Expresso Para Woocommerce
2.1
CVSSv2
CVE-2008-1952
The backend for XenSource Xen Para Virtualized Frame Buffer (PVFB) in Xen ioemu does not properly restrict the frame buffer size, which allows malicious users to cause a denial of service (crash) by mapping an arbitrary amount of guest memory.
Xensource Xen Para Virtualized Frame Buffer
NA
CVE-2023-48781
Cross-Site Request Forgery (CSRF) vulnerability in Marketing Rapel MkRapel Regiones y Ciudades de Chile para WC.This issue affects MkRapel Regiones y Ciudades de Chile para WC: from n/a up to and including 4.3.0.
Marketingrapel Mkrapel Regiones Y Ciudades De Chile Para Wc
7.2
CVSSv2
CVE-2009-3525
The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters wi...
Xen Xen 3.3.1
Xen Xen 3.0.3
Xen Xen 3.3.0
1 EDB exploit
NA
CVE-9999-9999
Busca de CVEs Esta é uma aplicação de linha de comando escrita em Go, cujo objetivo é buscar informações sobre CVEs disponíveis na API pública CVE Search Utilização Para utilizar a API é necessári...
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »