CVSS: 9.8EPSS: 15%CPEs: 1EXPL: 2CVE-2024-55976 – WordPress Critical Site Intel plugin <= 1.0 - SQL Injection vulnerability
https://notcve.org/view.php?id=CVE-2024-55976
14 Dec 2024 — Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mike Leembruggen Critical Site Intel allows SQL Injection.This issue affects Critical Site Intel: from n/a through 1.0. The Critical Site Intel plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers t... • https://packetstorm.news/files/id/183330 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 8.7EPSS: 0%CPEs: 112EXPL: 0CVE-2023-42772
https://notcve.org/view.php?id=CVE-2023-42772
16 Sep 2024 — Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01071.html • CWE-822: Untrusted Pointer Dereference •
CVSS: 8.7EPSS: 0%CPEs: 46EXPL: 0CVE-2023-43626
https://notcve.org/view.php?id=CVE-2023-43626
16 Sep 2024 — Improper access control in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01071.html • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 153EXPL: 0CVE-2024-21871
https://notcve.org/view.php?id=CVE-2024-21871
16 Sep 2024 — Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01071.html • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-28170
https://notcve.org/view.php?id=CVE-2024-28170
16 Sep 2024 — Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html • CWE-284: Improper Access Control •
CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-36261
https://notcve.org/view.php?id=CVE-2024-36261
16 Sep 2024 — Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html • CWE-284: Improper Access Control •
CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-36247
https://notcve.org/view.php?id=CVE-2024-36247
16 Sep 2024 — Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-32666
https://notcve.org/view.php?id=CVE-2024-32666
16 Sep 2024 — NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html • CWE-476: NULL Pointer Dereference •
CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34545
https://notcve.org/view.php?id=CVE-2024-34545
16 Sep 2024 — Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-33848
https://notcve.org/view.php?id=CVE-2024-33848
16 Sep 2024 — Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00926.html • CWE-248: Uncaught Exception •