Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2024
CVE-2024-32090
Cross-Site Request Forgery (CSRF) vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a through <= 4.0.27.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-04-15
CVE-2024-32085
Cross-Site Request Forgery (CSRF) vulnerability in AitThemes Citadela Listing.This issue affects Citadela Listing: from n/a before 5.20.0.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-04-15
CVE-2024-3505
JFrog Artifactory Self-Hosted versions below 7.77.3, are vulnerable to sensitive information disclosure whereby a low-privileged authenticated user can read the proxy configuration. This does not affect JFrog cloud deployments.
CVSS Score
4.3
EPSS Score
0.005
Published
2024-04-15
CVE-2024-3701
The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services.
CVSS Score
9.8
EPSS Score
0.005
Published
2024-04-15
CVE-2024-32441
Cross-Site Request Forgery (CSRF) vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.7.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-04-15
CVE-2024-32442
Cross-Site Request Forgery (CSRF) vulnerability in Zoho Campaigns.This issue affects Zoho Campaigns: from n/a through 2.0.7.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-04-15
CVE-2024-32443
Cross-Site Request Forgery (CSRF) vulnerability in IP2Location Download IP2Location Country Blocker.This issue affects Download IP2Location Country Blocker: from n/a through 2.34.2.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-04-15
CVE-2024-32445
Cross-Site Request Forgery (CSRF) vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition.This issue affects WebinarIgnition: from n/a through <= 3.05.8.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-04-15
CVE-2024-32430
Server-Side Request Forgery (SSRF) vulnerability in ActiveCampaign.This issue affects ActiveCampaign: from n/a through 8.1.14.
CVSS Score
4.4
EPSS Score
0.003
Published
2024-04-15
CVE-2024-32431
Deserialization of Untrusted Data vulnerability in WP All Import Import Users from CSV.This issue affects Import Users from CSV: from n/a through 1.2.
CVSS Score
4.4
EPSS Score
0.004
Published
2024-04-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved