Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
para vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-3525
The Getnet Argentina para Woocommerce plugin for WordPress is vulnerable to authorization bypass due to missing validation on the 'webhook' function in versions up to, and including, 0.0.4. This makes it possible for unauthenticated malicious users to set their payment ...
Getnet Argentina Para Woocommerce Project Getnet Argentina Para Woocommerce
9.8
CVSSv3
CVE-2022-0814
The Ubigeo de Perú para Woocommerce WordPress plugin prior to 3.6.4 does not properly sanitise and escape some parameters before using them in SQL statements via various AJAX actions, some of which are available to unauthenticated users, leading to SQL Injections
Ubigeo De Peru Para Woocommerce Project Ubigeo De Peru Para Woocommerce
7.5
CVSSv3
CVE-2014-10397
The Antioch theme through 2014-09-07 for WordPress allows arbitrary file downloads via the file parameter to lib/scripts/download.php.
Para Antioch
6.1
CVSSv3
CVE-2022-1782
Cross-site Scripting (XSS) - Generic in GitHub repository erudika/para prior to v1.45.11.
Erudika Para
5.3
CVSSv3
CVE-2022-1848
Business Logic Errors in GitHub repository erudika/para before 1.45.11.
Erudika Para
4.8
CVSSv3
CVE-2022-47589
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in this.Functional CTT Expresso para WooCommerce plugin <= 3.2.11 versions.
Thisfunctional Ctt Expresso Para Woocommerce
NA
CVE-2008-1952
The backend for XenSource Xen Para Virtualized Frame Buffer (PVFB) in Xen ioemu does not properly restrict the frame buffer size, which allows malicious users to cause a denial of service (crash) by mapping an arbitrary amount of guest memory.
Xensource Xen Para Virtualized Frame Buffer
8.8
CVSSv3
CVE-2023-48781
Cross-Site Request Forgery (CSRF) vulnerability in Marketing Rapel MkRapel Regiones y Ciudades de Chile para WC.This issue affects MkRapel Regiones y Ciudades de Chile para WC: from n/a up to and including 4.3.0.
Marketingrapel Mkrapel Regiones Y Ciudades De Chile Para Wc
NA
CVE-2009-3525
The pyGrub boot loader in Xen 3.0.3, 3.3.0, and Xen-3.3.1 does not support the password option in grub.conf for para-virtualized guests, which allows attackers with access to the para-virtualized guest console to boot the guest or modify the guest's kernel boot parameters wi...
Xen Xen 3.3.1
Xen Xen 3.0.3
Xen Xen 3.3.0
1 EDB exploit
NA
CVE-9999-9999
Busca de CVEs Esta é uma aplicação de linha de comando escrita em Go, cujo objetivo é buscar informações sobre CVEs disponíveis na API pública CVE Search Utilização Para utilizar a API é necessári...
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »