PHP - CVE CyberSecurity Database News (Page 7)

Nov 28, 2024 WordPress PHP

CVE-2024-8672 - Remote Code Execution Vulnerability in Widget Options WordPress Plugin

A critical vulnerability has been discovered in the Widget Options – The #1 WordPress Widget & Block Control Plugin for WordPress. The vulnerability allows authenticated attackers

Nov 26, 2024 XSS Exploit PHP

CVE-2024-49038 - Elevation of Privilege via Cross-site Scripting in Copilot Studio

A new vulnerability, identified as CVE-2024-49038, has been discovered within the Copilot Studio software. This vulnerability allows for an unauthorized attacker to exploit improper neutralization

Nov 26, 2024 WordPress Exploit PHP

CVE-2024-10781: Arbitrary Plugin Installation Vulnerability in Spam protection, Anti-Spam, FireWall by CleanTalk WordPress Plugin

Introduction: The popular Spam protection, Anti-Spam, FireWall by CleanTalk plugin for WordPress has been discovered to possess a security vulnerability up to and including the

Nov 26, 2024 WordPress Exploit PHP

CVE-2024-10542 - Unauthorized Arbitrary Plugin Installation Vulnerability in Spam Protection, Anti-Spam, FireWall by CleanTalk Plugin for WordPress

-- The Spam protection, Anti-Spam, FireWall by CleanTalk plugin for WordPress, a popular plugin for protecting WordPress websites from spam, is found to be vulnerable

Nov 24, 2024 Exploit PHP

CVE-2024-11233: Buffer Overread in PHP's convert.quoted-printable-decode Filter

CVE-2024-11233 is a security vulnerability associated with PHP's convert.quoted-printable-decode filter. The issue impacts PHP versions 8.1.* before 8.1.31, 8.