Lista CVE 2024/12xxx

CVE nel gruppo: 12xxx

CVE-2024-12000 (N/A)

CVE-2024-12001 (code-projects Blood Bank System Setting updatesettings.php cross site scripting)

CVE-2024-12002 (code-projects Wazifa System Setting updatesettings.php cross site scripting)

CVE-2024-12003 (Tenda FH451/FH1201/FH1202/FH1206 GetIPTV websReadEvent null pointer dereference)

CVE-2024-12004 (WP System <= 1.1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting)

CVE-2024-12005 (WPC Order Notes for WooCommerce <= 1.5.2 - Cross-Site Request Forgery to Reflected Cross-Site Scripting)

CVE-2024-12006 (WP-BibTeX <= 3.0.1 - Cross-Site Request Forgery to Stored and Reflected Cross-Site Scripting)

CVE-2024-12007 (W3 Total Cache <= 2.8.1 Missing Authorization to Unauthenticated Plugin Deactivation and Extensions Activation/Deactivation)

CVE-2024-12008 (code-projects Farmacia visualizar-produto.php sql injection)

CVE-2024-12009 (W3 Total Cache <= 2.8.1 Information Exposure via Log Files)

CVE-2024-12010 (N/A)

CVE-2024-12011 (N/A)

CVE-2024-12012 (N/A)

CVE-2024-12013 (N/A)

CVE-2024-12014 (N/A)

CVE-2024-12015 (Path Traversal and IDOR Vulnerabilities in eSignaViewer Allow Unauthorized File Access)

CVE-2024-12016 (SQL Injection in WordPress Project Manager Plugin)

CVE-2024-12018 (SQLi in CM Informatics’ CM News)

CVE-2024-12019 (Snippet Shortcodes <= 4.1.6 - Authenticated (Subscriber+) Shortcode Deletion)

CVE-2024-12020 (Arbitrary File Read via Document API)