The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.8.1 via the 'map_style' parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute...
8.8CVSS
7.7AI Score
EPSS
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.8.1 via the 'map_style' parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute...
8.8CVSS
EPSS
The Void Contact Form 7 Widget For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cf7_redirect_page' attribute within the plugin's Void Contact From 7 widget in all versions up to, and including, 2.4 due to insufficient input sanitization and...
6.4CVSS
EPSS
The Void Contact Form 7 Widget For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cf7_redirect_page' attribute within the plugin's Void Contact From 7 widget in all versions up to, and including, 2.4 due to insufficient input sanitization and...
6.4CVSS
5.7AI Score
EPSS
The Void Contact Form 7 Widget For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cf7_redirect_page' attribute within the plugin's Void Contact From 7 widget in all versions up to, and including, 2.4 due to insufficient input sanitization and...
6.4CVSS
EPSS
GHSA-95PR-FXF5-86GV vulnerabilities
Vulnerabilities for packages: gitsign, goreleaser, spire-server, tekton-chains, melange, apko, tkn, kubescape, aactl, zot, falco, falcoctl, skaffold, flux-source-controller, ko, wolfictl, vexctl, neuvector-sigstore-interface, zarf, policy-controller,...
7.5AI Score
Vulnerabilities for packages: bank-vaults, keda, gitsign, goreleaser, spire-server, terragrunt, gh, scorecard, snyk-cli, fulcio, terraform-provider-azurerm, tekton-chains, vault-csi-provider, k3d, flux-kustomize-controller, kargo, flux, rook, step-ca, timestamp-authority,...
6CVSS
6AI Score
0.0004EPSS
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: kaf, fuse-overlayfs-snapshotter, gitness, kubevela, tomcat, nri-prometheus, kubescape, kubernetes-csi-livenessprobe, kubewatch, helm, flux-notification-controller, aactl, hey, spark-operator, frp, node-problem-detector, envoy-ratelimit, grpcurl, dotnet, skaffold,...
7.5CVSS
9AI Score
0.732EPSS
CVE-2024-29018 vulnerabilities
Vulnerabilities for packages: goreleaser, spire-server, trivy, kargo, up, buf, dagger, melange, prometheus, cadvisor, telegraf, datadog-agent, tkn, kubescape, kaniko, docker-compose, aactl, grype, loki, crossplane, zot, syft, wolfictl, ko, ctop, buildkitd,...
5.9CVSS
6.1AI Score
0.0004EPSS
GHSA-MQ39-4GV4-MVPX vulnerabilities
Vulnerabilities for packages: goreleaser, spire-server, trivy, kargo, up, buf, dagger, melange, prometheus, cadvisor, telegraf, datadog-agent, tkn, kubescape, kaniko, docker-compose, aactl, grype, loki, crossplane, zot, syft, wolfictl, ko, ctop, buildkitd,...
7.5AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: bank-vaults, kaf, kubernetes-csi-external-snapshotter, vault-k8s, boring-registry, fuse-overlayfs-snapshotter, gitness, istio-pilot-agent, k9s, tekton-chains, thanos-operator, istio-pilot-discovery, trillian, karpenter, prometheus-node-exporter,...
7.5AI Score
CVE-2024-27304 vulnerabilities
Vulnerabilities for packages: keda, temporal-server, trillian, amass, kube-bench, argo-workflows, telegraf, vault, ferretdb, k3s, kots, spicedb, caddy, kine, src,...
9.8CVSS
9.7AI Score
0.0004EPSS
GHSA-MRWW-27VC-GGHV vulnerabilities
Vulnerabilities for packages: keda, temporal-server, trillian, amass, kube-bench, argo-workflows, telegraf, vault, ferretdb, k3s, kots, spicedb, caddy, kine, src,...
7.5AI Score
GHSA-232P-VWFF-86MP vulnerabilities
Vulnerabilities for packages: up, helm, melange, ko, ctop, bom,...
7.5AI Score
Vulnerabilities for packages: argo-cd, aws-efs-csi-driver, cluster-autoscaler,...
8.8CVSS
8.9AI Score
0.001EPSS
CVE-2023-46402 vulnerabilities
Vulnerabilities for packages: flux-notification-controller, argo-cd, melange, pulumi-kubernetes-operator,...
7.5CVSS
7.7AI Score
0.0005EPSS
6.2CVSS
7.1AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
Vulnerabilities for packages: kubernetes-dns-node-cache, cluster-autoscaler, kubernetes-csi-driver-hostpath, ip-masq-agent, nodetaint, kubernetes, calico, aws-ebs-csi-driver, local-static-provisioner, spark-operator,...
2.7CVSS
4.3AI Score
0.0004EPSS
7.5CVSS
7.7AI Score
0.001EPSS
7.5AI Score
5.3CVSS
7.2AI Score
0.0005EPSS
7.2CVSS
7.3AI Score
0.0004EPSS
8.8CVSS
7.2AI Score
0.001EPSS
8.8CVSS
7.2AI Score
0.001EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
Vulnerabilities for packages: cloudflared, kubernetes-dns-node-cache,...
5.3CVSS
5.5AI Score
0.0004EPSS
7.5AI Score
8.8CVSS
7.2AI Score
0.0004EPSS
8.8CVSS
7.2AI Score
0.0004EPSS
7.5AI Score
6.5CVSS
7AI Score
0.001EPSS
7.5AI Score
7.5AI Score
5.3CVSS
7.5AI Score
0.001EPSS
7.8CVSS
7.5AI Score
0.001EPSS
4.7CVSS
7.5AI Score
0.0004EPSS
6.5CVSS
7.5AI Score
0.001EPSS
5.9CVSS
6.1AI Score
0.001EPSS
CVE-2022-29526 vulnerabilities
Vulnerabilities for packages: grpcurl, dynamic-localpv-provisioner, ctop, k3d,...
5.3CVSS
9.3AI Score
0.002EPSS
7.5AI Score
7.5AI Score
7.5AI Score
GHSA-P782-XGP4-8HR8 vulnerabilities
Vulnerabilities for packages: grpcurl, dynamic-localpv-provisioner, ctop, k3d,...
7.5AI Score