Lista CVE 2024/56xxx

CVE nel gruppo: 56xxx

CVE-2024-56021 (N/A)

CVE-2024-56022 (WordPress Category Post Shortcode Plugin <= 2.4 - Cross Site Scripting (XSS) vulnerability)

CVE-2024-56023 (WordPress Preloader by WordPress Monsters plugin <= 1.2.3 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56024 (WordPress WP eCommerce Quickpay plugin <= 1.1.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56025 (WordPress Custom Dashboard Widget plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56026 (WordPress AdWork Media EZ Content Locker plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56027 (WordPress Simple Proxy plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56028 (WordPress Leads CRM plugin <= 2.0.13 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56029 (WordPress Lemonade Social Networks Autoposter Pinterest plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56030 (WordPress Easy Language Switcher plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56031 (WordPress 10CentMail plugin <= 2.1.50 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56032 (WordPress Smart Shopify Product plugin <= 1.0.2 - Arbitrary Content Deletion vulnerability)

CVE-2024-56033 (WordPress FV Descriptions plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56034 (WordPress FAQs plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56035 (WordPress Services updates for customers plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56036 (WordPress Upload Scanner plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56037 (WordPress odPhotogallery plugin <= 0.5.3 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56038 (WordPress User Referral plugin <= 8.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56039 (WordPress SendSMS Plugin <= 1.2.9 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56040 (WordPress VibeBP plugin < 1.9.9.7.7 - Unauthenticated SQL Injection vulnerability)

CVE-2024-56041 (WordPress VibeBP plugin <= 1.9.9.4.1 - Unauthenticated Privilege Escalation vulnerability)

CVE-2024-56042 (WordPress VibeBP plugin < 1.9.9.5.1 - SQL Injection vulnerability)

CVE-2024-56043 (WordPress WPLMS plugin < 1.9.9.5.3 - Unauthenticated SQL Injection vulnerability)

CVE-2024-56044 (WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Privilege Escalation vulnerability)

CVE-2024-56045 (WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Arbitrary User Token Generation vulnerability)

CVE-2024-56046 (WordPress WPLMS plugin < 1.9.9.5 - Unauthenticated Arbitrary Directory Deletion vulnerability)

CVE-2024-56047 (WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Arbitrary File Upload vulnerability)

CVE-2024-56048 (WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ SQL Injection vulnerability)

CVE-2024-56049 (WordPress WPLMS plugin <= 1.9.9 - Arbitrary Option Update to Privilege Escalation vulnerability)

CVE-2024-56050 (WordPress WPLMS plugin < 1.9.9.5.2 - Subscriber+ Arbitrary File Deletion vulnerability)

CVE-2024-56051 (WordPress WPLMS plugin < 1.9.9.5.3 - Subscriber+ Arbitrary File Upload vulnerability)

CVE-2024-56052 (WordPress WPLMS plugin < 1.9.9.5 - Student+ Remote Code Execution (RCE) vulnerability)

CVE-2024-56053 (WordPress WPLMS plugin < 1.9.9.5.2 - Student+ Arbitrary File Upload vulnerability)

CVE-2024-56054 (WordPress WPLMS plugin < 1.9.9.5.3 - Instructor+ SQL Injection vulnerability)

CVE-2024-56055 (WordPress WPLMS plugin < 1.9.9.5.2 - Instructor+ Arbitrary File Upload vulnerability)

CVE-2024-56056 (WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary Directory Deletion vulnerability)

CVE-2024-56057 (WordPress SimpleCharm Theme <= 1.4.3 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2024-56058 (WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary File Upload vulnerability)

CVE-2024-56059 (WordPress VRPConnector plugin <= 2.0.1 - PHP Object Injection vulnerability)

CVE-2024-56060 (WordPress Partners plugin <= 0.2.0 - PHP Object Injection vulnerability)