Recent Advisories

Severity ID Title Vendor Product Date Type
Unknown ADV-8856

Pentests once a year? Nope. It’s time to build an offensive SOC

Security Update News Update Information Title Pentests once a year? Nope. It’s time to build an offensive SOC Update ID THN:3E17F73B821EAD900...

N/A N/A NEWS
Unknown ADV-8855

Post Grid Master <= 3.4.13 - Reflected Cross-Site Scripting via argsArray['read_more_text']

CVE Details Basic Information Title Post Grid Master

N/A N/A NEWS
Unknown ADV-8854

hiWeb Export Posts <= 0.9.0.0 - Cross-Site Request Forgery to Arbitrary File Deletion

CVE Details Basic Information Title hiWeb Export Posts

N/A N/A NEWS
Unknown ADV-8853

Ai Engine <= 2.9.4 - Missing URL Scheme Validation to Authenticated (Subscriber+) Arbitrary File Read via simpleTranscribeAudio and get_audio Functions

CVE Details Basic Information Title Ai Engine

N/A N/A NEWS
Unknown ADV-8852

Get Youtube Subs <= 3.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via subscribe_link_att Function

CVE Details Basic Information Title Get Youtube Subs

N/A N/A NEWS
Unknown ADV-8851

Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition <= 4.03.31 - Unauthenticated Login Token Generation to Authentication Bypass

CVE Details Basic Information Title Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition

N/A N/A NEWS
Unknown ADV-8850

Mine CloudVod <= 2.1.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via audio Parameter

CVE Details Basic Information Title Mine CloudVod

N/A N/A NEWS
Unknown ADV-8849

ONLYOFFICE Docs 1.1.0 – 2.2.0 – Missing Authorization to Unauthenticated Privilege Escalation via callback Function

CVE Details Basic Information Title ONLYOFFICE Docs 1.1.0 – 2.2.0 – Missing Authorization to Unauthenticated Privilege Escalation via c...

N/A N/A NEWS
Unknown ADV-8848

WP Wallcreeper <= 1.6.1 - Missing Authorization to Authenticated (Susbcriber+) Cache Enable/Disable

CVE Details Basic Information Title WP Wallcreeper

N/A N/A NEWS
Unknown ADV-8847

WP Applink <= 0.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via title Parameter

CVE Details Basic Information Title WP Applink

N/A N/A NEWS