Security Vulnerabilities - CVEs Published In November 2024
The Jeg Elementor Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.9 via the render_content function in class/elements/views/class-tabs-view.php. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive private, pending, and draft template data.
CVSS Score
4.3
EPSS Score
0.001
Published
2024-11-26
The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.4.6. This is due to the plugin not properly validating a user's password reset code prior to updating their password. This makes it possible for unauthenticated attackers, with knowledge of a user's email address, to reset the user's password and gain access to their account.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-11-26
The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's JKit - Countdown widget in all versions up to, and including, 2.6.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVSS Score
6.4
EPSS Score
0.0
Published
2024-11-26
CVE-2024-11680
ProjectSend versions prior to r1720 are affected by an improper authentication vulnerability. Remote, unauthenticated attackers can exploit this flaw by sending crafted HTTP requests to options.php, enabling unauthorized modification of the application's configuration. Successful exploitation allows attackers to create accounts, upload webshells, and embed malicious JavaScript.
Known exploited
CVSS Score
9.8
EPSS Score
0.931
Published
2024-11-26
The Booster for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wcj_product_meta shortcode in all versions up to, and including, 7.2.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with ShopManager-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-11-26
An image with a version lower than the fuse version may potentially be booted lead to improper authentication.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-11-26
Initial xbl_sec revision does not have all the debug policy features and critical checks.
CVSS Score
8.4
EPSS Score
0.0
Published
2024-11-26
On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to an invalid memory access by the decoder.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-11-26
Buffer overwrite in the WLAN host driver by leveraging a compromised WLAN FW
CVSS Score
8.4
EPSS Score
0.001
Published
2024-11-26
In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to insufficient validation.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-11-26