Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
news magazine vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2021-41731
Cross Site Scripting (XSS vulnerability exists in )Sourcecodester News247 News Magazine (CMS) PHP 5.6 or higher and MySQL 5.7 or higher via the blog category name field
News247 News Magazine \\(cms\\) Project News247 News Magazine \\(cms\\) 1.0
9.8
CVSSv3
CVE-2017-15982
Dynamic News Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing.
Geniusocean News 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2020-10257
The ThemeREX Addons plugin prior to 2020-03-09 for WordPress lacks access control on the /trx_addons/v2/get/sc_layout REST API endpoint, allowing for PHP functions to be executed by any users, because includes/plugin.rest-api.php calls trx_addons_rest_get_sc_layout with an unsafe...
Themerex Addons 1.70.3
Themerex Ozeum-museum
Themerex Chit Club-board Games
Themerex Addons 1.6.67
Themerex Yottis-simple Portfolio
Themerex Addons 1.6.66
Themerex Helion-agency \\&portfolio
Themerex Amuli
Themerex Addons 1.6.65
Themerex Nelson-barbershop \\+ Tattoo Salon
Themerex Hallelujah-church
Themerex Right Way
Themerex Prider-pride Fest
Themerex Addons 1.6.62.3
Themerex Mystik-esoterics
Themerex Skydiving And Flying Company
Themerex Addons 1.6.62.1
Themerex Dronex-aerial Photography Services
Themerex Addons 1.6.61.2
Themerex Samadhi-buddhist
Themerex Addons 1.6.61.3
Themerex Tantum-rent A Car\\, Rent A Bike\\, Rent A Scooter Multiskin Theme
NA
CVE-2024-0900
The Elespare – Build Your Blog, News & Magazine Websites with Expert-Designed Template Kits. One Click Import: No Coding Skills Required! plugin for WordPress is vulnerable to unauthorized post creation due to a missing capability check on the elespare_create_post() fun...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started