Web Application Detections Published in November 2024

Hitesh Kadu

In November, Qualys released QIDs targeting vulnerabilities in several widely used software products, including Apache HertzBeat, Apache Nifi, Apache OFBiz, Apache Tomcat, AVSCMS, Bootstrap, CodeChecker, CyberPanel, Envoy, Ivanti CSA, Ivanti Endpoint Manager, Ivanti ICS, Ivanti CSA, JavaScript, Jenkins, JetBrains YouTrack, Langflow, Liferay, Metabase, Moodle, Nexus, Ollama, OpenSSL, PHP, PyLoad, Palo Alto Networks PAN-OS, Roundcube Webmail, Symfony, WordPress, Zabbix, ZenML. The QIDs released to detect the vulnerabilities in the frameworks above are listed below. Details about the following QIDs can be found in our knowledge base. Please review reports of the scanned applications for these detections and, if any are identified follow the steps provided in the knowledge base to ensure applications are protected against the reported vulnerabilities.

QIDTitle
151036Vulnerable JavaScript Library Detected PDFJS
152320Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability (CVE-2024-37383)
152336WordPress SlimStat Analytics Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2024-9548)
152337WordPress Miniorange OTP Verification with Firebase Plugin: Arbitrary User Password Change Vulnerability (CVE-2024-9862)
152338WordPress WP Post Author Plugin: Time-based SQL Injection Vulnerability (CVE-2024-8757)
152340WordPress Crypto Plugin: Authentication Bypass Vulnerability (CVE-2024-9988)
152341WordPress Crypto Plugin: Authentication Bypass Vulnerability (CVE-2024-9989)
152342WordPress WP Social Plugin: Authentication Bypass Vulnerability (CVE-2024-9501)
152343WordPress WP Query Console Plugin: Remote Code Execution Vulnerability (CVE-2024-50498)
152344WordPress AR For WordPress Plugin: Arbitrary File Upload Vulnerability (CVE-2024-50496)
152345CyberPanel Remote Code Execution (RCE) Vulnerability (CVE-2024-51567)
152346WordPress SurveyJS Plugin: Arbitrary File Upload Vulnerability (CVE-2024-50427)
152347Envoy Detected
152348WordPress Masteriyo LMS Plugin: Unauthorized User Profile Modification Vulnerability (CVE-2024-10008)
152349WordPress WPC Shop as a Customer Plugin: PHP Object Injection Vulnerability (CVE-2024-50416)
152350Malicious Lottie Player Detected
152351WordPress Meta Data and Taxonomies Filter (MDTF) Plugin: Code Injection Vulnerability (CVE-2024-50450)
152352WordPress Crypto Plugin: Cross-Site Request Forgery Vulnerability (CVE-2024-9990)
152353WordPress WPC Smart Messages Plugin: Local File Inclusion Vulnerability (CVE-2024-10436)
152354WordPress AI Power Plugin: Arbitrary File Upload Vulnerability (CVE-2024-10392)
152355WordPress Enable Shortcodes inside Widgets, Comments and Experts Plugin: Arbitrary Shortcode Execution Vulnerability (CVE-2024-9846)
152356WordPress LiteSpeed Cache Plugin: Privilege Escalation Vulnerability (CVE-2024-50550)
152357WordPress Royal Elementor Addons Plugin: XML External Entity (XXE) Vulnerability (CVE-2024-50442)
152358JetBrains YouTrack Regular expression Denial of Service Vulnerability (CVE-2024-50574)
152359Ollama Information Disclosure Vulnerability (CVE-2024-39719)
152360Ollama Information Disclosure Vulnerability (CVE-2024-39722)
152361Ollama Denial of Service Vulnerability (CVE-2024-39720)
152362Ollama ZIP Archive Directory Traversal Vulnerability (CVE-2024-45436)
152363ZenML Session Reuse Vulnerability (CVE-2024-4680)
152364JetBrains YouTrack Prior to 2024.3.47707 Multiple Cross-site Scripting Vulnerabilities
152365CodeChecker Authentication Bypass Vulnerability (CVE-2024-10081)
152366WordPress WP Job Search Plugin: Arbitrary File Upload Vulnerability (CVE-2024-8615)
152367Ivanti CSA Path Traversal Vulnerability (CVE-2024-8963)
152368WordPress All-in-One WP Migration and Backup Plugin: Arbitrary PHP Code Injection Vulnerability (CVE-2024-9162)
152369WordPress mFolio Lite Plugin: Authenticated File Upload Vulnerability (CVE-2024-9307)
152370WordPress WP Job Search Plugin: Authenticated Arbitrary File Upload Vulnerability (CVE-2024-8614)
152371WordPress Super Socializer Plugin: Authentication Bypass Vulnerability (CVE-2024-9946)
152372PyLoad Remote Code Execution Vulnerability (CVE-2024-39205)
152373WordPress Heateor Social Login Plugin: Authentication Bypass Vulnerability (CVE-2024-10020)
152374WordPress Everest Backup Plugin: Sensitive Information Exposure Vulnerability (CVE-2024-10028)
152375Moodle Badge Deletion Vulnerability (CVE-2024-43431)
152376Moodle Cache Poisoning Vulnerability (CVE-2024-43428)
152377Moodle Local File Inclusion (LFI) Vulnerability (CVE-2024-43440)
152378Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-43434)
152379Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8980)
152380Langflow Remote Code Execution Vulnerability (CVE-2024-4806)
152381WordPress WP Photo Album Plus Plugin: Arbitrary Shortcode Execution Vulnerability (CVE-2024-10958)
152382Moodle User Management Vulnerability (CVE-2024-43433)
152383Moodle Multiple Cross Site Scripting Vulnerabilities
152384Moodle Sensitive Information Disclosure Vulnerability (CVE-2024-43429)
152385Moodle Incorrect Authorization Vulnerability (CVE-2024-43433)
152386Jenkins Sensitive Information Exposure Vulnerability (CVE-2024-47803)
152387Jenkins Item Creation Restriction Bypass Vulnerability (CVE-2024-47804)
152388Moodle Sensitive Data Exposure Vulnerability (CVE-2024-43427)
152389Moodle HTTP Authorization Header Information Exposure Vulnerability (CVE-2024-43432)
152390Moodle Insufficient Capability Checks Vulnerability (CVE-2024-43435)
152391Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability (CVE-2024-9379)
152392Ivanti Cloud Services Appliance (CSA) OS Command Injection Vulnerability (CVE-2024-9380)
152393Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability (CVE-2024-9381)
152394WordPress Jetpack Plugin: Unauthenticated Feedback Data Disclosure Vulnerability (CVE-2024-9926)
152395WordPress Relais 2FA Plugin: Authentication Bypass Vulnerability (CVE-2024-10245)
152396WordPress MultiManager WP Plugin: Authentication Bypass Vulnerability (CVE-2024-11028)
152397Symfony Environment Manipulation Vulnerability (CVE-2024-50340)
152399WordPress Really Simple Security Plugin: Authentication Bypass Vulnerability (CVE-2024-10924)
152401Ivanti Endpoint Manager Multiple Path Traversal Vulnerabilities
152402Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities
152403WordPress TI WooCommerce Wishlist Plugin: SQL Injection Vulnerability (CVE-2024-43917)
152404Nexus Repository Manager 3 Hard-coded Credentials Vulnerability (CVE-2024-5764)
152405Apache Tomcat Authentication Bypass Vulnerability (CVE-2024-52316)
152406Apache Tomcat Request and Response Mix-up (CVE-2024-52317)
152407Apache Tomcat Cross Site Scripting Vulnerability (CVE-2024-52318)
152408Ivanti Connect Secure (ICS) Argument Injection Vulnerabilities (CVE-2024-39710,CVE-2024-39711,CVE-2024-39712)
152409Ivanti Connect Secure (ICS) Argument Injection Vulnerability (CVE-2024-38655)
152410Ivanti Connect Secure (ICS) Argument Injection Vulnerability (CVE-2024-38656)
152411Ivanti Connect Secure (ICS) Reflected XSS Vulnerability (CVE-2024-11004)
152412Ivanti Connect Secure (ICS) Command Injection Vulnerabilities (CVE-2024-11005,CVE-2024-11006,CVE-2024-11007)
152413Ivanti Connect Secure (ICS) Buffer Overflow Vulnerabilities (CVE-2024-47905,CVE-2024-47907,CVE-2024-47909)
152414Ivanti Connect Secure (ICS) Excessive Binary Privileges Vulnerability (CVE-2024-47906)
152415Ivanti Connect Secure (ICS) NULL Pointer Dereference Vulnerability (CVE-2024-8495)
152416Ivanti Connect Secure (ICS) Out-of-bounds Read Vulnerability (CVE-2024-37400)
152417Ivanti Connect Secure (ICS) Use-after-free Vulnerability (CVE-2024-9420)
152418Ivanti Connect Secure (ICS) Out-of-bounds Write Vulnerability (CVE-2024-38649)
152419Ivanti Connect Secure (ICS) Incorrect file permissions Vulnerability (CVE-2024-39709)
152420Apache OFBiz before 18.12.17 Multiple Vulnerabilities (CVE-2024-48962,CVE-2024-47208)
152421Moodle Unauthorized Deletion of Report Audiences Vulnerability (CVE-2024-48898)
152422Moodle Insecure Direct Object Reference (IDOR) Vulnerability (CVE-2024-48901)
152423Moodle User Name Leakage via Messaging Error Vulnerability (CVE-2024-48896)
152424Moodle RSS Feed Insecure Direct Object Reference (IDOR) Vulnerability (CVE-2024-48897)
152425WordPress WordPress Video Robot Plugin: SQL Injection Vulnerability (CVE-2024-52431)
152426WordPress Classified Listing Plugin: Unauthorized Modification of Data Vulnerability (CVE-2024-11194)
152427WordPress UserPlus Plugin: Privilege Escalation Vulnerability (CVE-2024-9518)
152428WordPress WPSchoolPress Plugin: Insecure Direct Object Reference Vulnerability (CVE-2024-9637)
152429Apache HertzBeat Command Injection Vulnerability (CVE-2024-45505)
152430Apache HertzBeat Deserialization of Untrusted Data Vulnerability (CVE-2024-41151)
152431Apache HertzBeat Sensitive Information Disclosure Vulnerability (CVE-2024-45791)
152432WordPress Clone Plugin: PHP Object Injection Vulnerability (CVE-2024-10913)
152433WordPress WooCommerce Product Table Lite Plugin: Arbitrary Shortcode Execution Vulnerability (CVE-2024-10899)
152434WordPress ProfileGrid Plugin: Unauthorized Modification of Data Vulnerability (CVE-2024-10900)
152435Palo Alto Networks PAN-OS Authentication Bypass Vulnerability (CVE-2024-0012)
152436WordPress FluentSMTP Plugin: PHP Object Injection Vulnerability (CVE-2024-9511)
152437WordPress My Geo Posts Free Plugin: PHP Object Injection Vulnerability (CVE-2024-52433)
152438WordPress Collect and Deliver Interface for Woocommerce (CDI) Plugin: Arbitrary File Upload Vulnerability (CVE-2024-52398)
152439WordPress Zita Elementor Site Library Plugin: Arbitrary Code Execution Vulnerability (CVE-2024-37420)
152440Apache NiFi Information Disclosure Vulnerability (CVE-2024-52067)
152441WordPress Ashe Theme: Reflected Cross-Site Scripting Vulnerability (CVE-2024-9777)
152442WordPress Royal Elementor Addons and Templates Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2024-9682)
152443Ivanti Policy Secure (IPS) Argument Injection Vulnerabilities (CVE-2024-39710,CVE-2024-39711,CVE-2024-39712)
152444Ivanti Policy Secure (IPS) Argument Injection Vulnerability (CVE-2024-38655)
152445Ivanti Policy Secure (IPS) Argument Injection Vulnerability (CVE-2024-38656)
152446Ivanti Policy Secure (IPS) Reflected XSS Vulnerability (CVE-2024-11004)
152447Ivanti Policy Secure (IPS) Command Injection Vulnerabilities (CVE-2024-11005,CVE-2024-11006,CVE-2024-11007)
152448Ivanti Policy Secure (IPS) Buffer Overflow Vulnerabilities (CVE-2024-47905,CVE-2024-47909)
152449Ivanti Policy Secure (IPS) Excessive Binary Privileges Vulnerability (CVE-2024-47906)
152450Ivanti Policy Secure (IPS) NULL Pointer Dereference Vulnerability (CVE-2024-8495)
152451Ivanti Policy Secure (IPS) Use-after-free Vulnerability (CVE-2024-9420)
152452Ivanti Policy Secure (IPS) Incorrect file permissions Vulnerability (CVE-2024-39709)
152453Metabase Local File Inclusion (LFI) Vulnerability (CVE-2021-41277)
152454Adult Video Script CMS (AVSCMS) Arbitrary File Upload Vulnerability (CVE-2024-51053)
152455Adult Video Script CMS (AVSCMS) Weak Password Policy (CVE-2024-51051)
152456WordPress CleanTalk Spam Protect Plugin: Unauthorized Arbitrary Plugin Installation Vulnerability (CVE-2024-10542)
152457WordPress CleanTalk Spam Protect Plugin: Unauthorized Arbitrary Plugin Installation Vulnerability (CVE-2024-10781)
152458Jenkins Denial of Service (DoS) Vulnerability (CVE-2024-47855)
152459Zabbix Improper Authorization Vulnerability (CVE-2024-36467)
152460Zabbix SQL Injection Vulnerability (CVE-2024-42327)
152461Zabbix Remote Code Inclusion Vulnerability (CVE-2024-42330)
520033Open Secure Sockets Layer (OpenSSL) Out-of-Bounds (OOB) Memory Access Vulnerability (CVE-2024-9143)
520034PHP Out-of-bounds Write Vulnerability (CVE-2024-8932)
520035PHP Out-of-bounds Read Vulnerability (CVE-2024-8929)
Share your Comments

Comments

Your email address will not be published. Required fields are marked *