Vulnerabilidades em Jetmonsters
41 resultadosCVE-2024-4413CRITICALHotel Booking Lite <= 4.11.1 - Unauthenticated PHP Object InjectionEPSS 0.9%CVE-2025-30846HIGHWordPress Restaurant Menu by MotoPress plugin <= 2.4.4 - Local File Inclusion vulnerabilityEPSS 0.6%CVE-2023-1895HIGHGetwid – Gutenberg Blocks <= 1.8.3 - Authenticated(Subscriber+) Server Side Request ForgeryEPSS 0.6%CVE-2024-3342CRITICALTimetable and Event Schedule by MotoPress <= 2.4.11 - Authenticated (Contributor+) SQL InjectionEPSS 0.6%CVE-2024-3588MEDIUMGetwid – Gutenberg Blocks <= 2.0.7 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via 'Countdown'EPSS 0.5%CVE-2023-6963MEDIUMGetwid – Gutenberg Blocks <= 2.0.4 - Captcha BypassEPSS 0.5%CVE-2024-7291HIGHJetFormBuilder <= 3.3.4.1 - Authenticated (Administrator+) Privilege EscalationEPSS 0.5%CVE-2023-1910MEDIUMGetwid – Gutenberg Blocks <= 1.8.3 - Improper Authorization via get_remote_templates REST endpointEPSS 0.5%CVE-2024-10316MEDIUMStratum – Elementor Widgets <= 1.4.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor TemplatesEPSS 0.5%CVE-2025-53990HIGHWordPress JetFormBuilder plugin <= 3.5.1.2 - PHP Object Injection VulnerabilityEPSS 0.5%CVE-2023-6959MEDIUMGetwid – Gutenberg Blocks <= 2.0.4 - Missing Authorization to Recaptcha API Key ModificationEPSS 0.4%CVE-2024-2138MEDIUMJetWidgets For Elementor <= 1.0.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Box WidgetEPSS 0.4%CVE-2024-5020MEDIUMMultiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript LibraryEPSS 0.4%CVE-2020-36840HIGHTimetable and Event Schedule by MotoPress <= 2.3.8 - Missing AuthorizationEPSS 0.4%CVE-2024-1948MEDIUMGetwid – Gutenberg Blocks <= 2.0.5 - Authenticated(Contributor+) Stored Cross-Site Scripting via Block ContentEPSS 0.4%CVE-2026-4373HIGHJetFormBuilder <= 3.5.6.2 - Unauthenticated Arbitrary File Read via Media FieldEPSS 0.4%CVE-2024-6491MEDIUMGetwid – Gutenberg Blocks <= 2.0.10 - Missing Authentication to MailChimp API key updateEPSS 0.4%CVE-2024-31386MEDIUMMultiple WordPress themes affected by Cross-Site Request Forgery vulnerabilityEPSS 0.4%CVE-2024-2507MEDIUMJetWidgets For Elementor <= 1.0.16 - Authenticated(Contributor+) Stored Cross-Site Scripting via Widget Button URLEPSS 0.3%CVE-2023-0086MEDIUMJetWidgets for Elementor <= 1.0.12 - Cross-Site Request Forgery to Settings UpdateEPSS 0.3%