Auto-Update: 2024-07-21T22:00:18.324888+00:00

CVE-2024/CVE-2024-387xx/CVE-2024-38784.json

@@ -0,0 +1,56 @@
+{
+  "id": "CVE-2024-38784",
+  "sourceIdentifier": "audit@patchstack.com",
+  "published": "2024-07-21T21:15:02.030",
+  "lastModified": "2024-07-21T21:15:02.030",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Livemesh Livemesh Addons for Beaver Builder allows Stored XSS.This issue affects Livemesh Addons for Beaver Builder: from n/a through 3.6.1."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "audit@patchstack.com",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "HIGH",
+          "userInteraction": "REQUIRED",
+          "scope": "CHANGED",
+          "confidentialityImpact": "LOW",
+          "integrityImpact": "LOW",
+          "availabilityImpact": "LOW",
+          "baseScore": 5.9,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 1.7,
+        "impactScore": 3.7
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "audit@patchstack.com",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-79"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://patchstack.com/database/vulnerability/addons-for-beaver-builder/wordpress-livemesh-addons-for-beaver-builder-plugin-3-6-1-cross-site-scripting-xss-vulnerability?_s_id=cve",
+      "source": "audit@patchstack.com"
+    }
+  ]
+}

CVE-2024/CVE-2024-387xx/CVE-2024-38785.json

@@ -0,0 +1,56 @@
+{
+  "id": "CVE-2024-38785",
+  "sourceIdentifier": "audit@patchstack.com",
+  "published": "2024-07-21T21:15:02.293",
+  "lastModified": "2024-07-21T21:15:02.293",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jegstudio Gutenverse allows Stored XSS.This issue affects Gutenverse: from n/a through 1.9.2."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "audit@patchstack.com",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "REQUIRED",
+          "scope": "CHANGED",
+          "confidentialityImpact": "LOW",
+          "integrityImpact": "LOW",
+          "availabilityImpact": "LOW",
+          "baseScore": 6.5,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 2.3,
+        "impactScore": 3.7
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "audit@patchstack.com",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-79"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://patchstack.com/database/vulnerability/gutenverse/wordpress-gutenverse-plugin-1-9-2-cross-site-scripting-xss-vulnerability?_s_id=cve",
+      "source": "audit@patchstack.com"
+    }
+  ]
+}

CVE-2024/CVE-2024-387xx/CVE-2024-38786.json

@@ -0,0 +1,56 @@
+{
+  "id": "CVE-2024-38786",
+  "sourceIdentifier": "audit@patchstack.com",
+  "published": "2024-07-21T21:15:02.527",
+  "lastModified": "2024-07-21T21:15:02.527",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in BurgerThemes CoziPress allows Stored XSS.This issue affects CoziPress: from n/a through 1.0.30."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "audit@patchstack.com",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "REQUIRED",
+          "scope": "CHANGED",
+          "confidentialityImpact": "LOW",
+          "integrityImpact": "LOW",
+          "availabilityImpact": "LOW",
+          "baseScore": 6.5,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 2.3,
+        "impactScore": 3.7
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "audit@patchstack.com",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-79"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://patchstack.com/database/vulnerability/cozipress/wordpress-cozipress-theme-1-0-30-cross-site-scripting-xss-vulnerability?_s_id=cve",
+      "source": "audit@patchstack.com"
+    }
+  ]
+}

README.md

@@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update
 
 ```plain
-2024-07-21T16:00:18.635978+00:00
+2024-07-21T22:00:18.324888+00:00
 ```
 
 ### Most recent CVE Modification Timestamp synchronized with NVD
 
 ```plain
-2024-07-21T15:15:03.720000+00:00
+2024-07-21T21:15:02.527000+00:00
 ```
 
 ### Last Data Feed Release
@@ -33,23 +33,22 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs
 
 ```plain
-257665
+257668
 ```
 
 ### CVEs added in the last Commit
 
 Recently added CVEs: `3`
 
-- [CVE-2024-6956](CVE-2024/CVE-2024-69xx/CVE-2024-6956.json) (`2024-07-21T14:15:03.373`)
-- [CVE-2024-6957](CVE-2024/CVE-2024-69xx/CVE-2024-6957.json) (`2024-07-21T15:15:03.267`)
-- [CVE-2024-6958](CVE-2024/CVE-2024-69xx/CVE-2024-6958.json) (`2024-07-21T15:15:03.720`)
+- [CVE-2024-38784](CVE-2024/CVE-2024-387xx/CVE-2024-38784.json) (`2024-07-21T21:15:02.030`)
+- [CVE-2024-38785](CVE-2024/CVE-2024-387xx/CVE-2024-38785.json) (`2024-07-21T21:15:02.293`)
+- [CVE-2024-38786](CVE-2024/CVE-2024-387xx/CVE-2024-38786.json) (`2024-07-21T21:15:02.527`)
 
 
 ### CVEs modified in the last Commit
 
-Recently modified CVEs: `1`
+Recently modified CVEs: `0`
 
-- [CVE-2024-6802](CVE-2024/CVE-2024-68xx/CVE-2024-6802.json) (`2024-07-21T15:15:02.190`)
 
 
 ## Download and Usage

_state.csv

@@ -254856,6 +254856,9 @@ CVE-2024-38767,0,0,5ad0da711e375b5faa75cfeef9e50fe3656523a9e63748dcd031d21a52f71
 CVE-2024-3877,0,0,4a72fb3a60020d6583c10cb3aed384330279f0439794d97578698eb4f04c72aa,2024-06-04T19:20:25.903000
 CVE-2024-3878,0,0,5053df083f23b6f337fe4f8fdf53fe0df42d421dbd3425cfd92b488e4629a9db,2024-05-17T02:40:10.087000
 CVE-2024-38780,0,0,ae16337cc2f7b6345cfbc91dc7be992225f0e3cd48711d005c1594aad3b12d58,2024-07-15T07:15:14.603000
+CVE-2024-38784,1,1,c721b43ac825ceb05c320557f7d43de2ea1f932710ab088d445551198093bdbe,2024-07-21T21:15:02.030000
+CVE-2024-38785,1,1,909cc2b7a94f7da3b0b6b4202501ab2d895290210e84ed2c0225d20b5d920d05,2024-07-21T21:15:02.293000
+CVE-2024-38786,1,1,0b4641f2efea70795810ddd5e11cff593e4c5989c77ec1683892594d39b5f7f2,2024-07-21T21:15:02.527000
 CVE-2024-3879,0,0,a6db760401fb215a79d8f48992cc838e1a5c23839a86defd39dd342ef1c5f8a8,2024-05-17T02:40:10.177000
 CVE-2024-3880,0,0,6dd5da57a8412b823038a64a32d07af4547e4dfdd637b54b90b4556bfd34431d,2024-06-04T19:20:26
 CVE-2024-38806,0,0,aa1ff0885d521aab036aaf6506258a484aa869322b524482869e0e1df3ac4a48,2024-07-19T13:01:44.567000
@@ -257614,7 +257617,7 @@ CVE-2024-6779,0,0,eb8d5debe3ae4525916f27034d3cd0e49a98090896d6ba5d8c5bcdb0d54820
 CVE-2024-6780,0,0,54fc3efeb973ca2f40f04f54d5a723685bcfaff31befba604fec0242bd088a83,2024-07-16T13:43:58.773000
 CVE-2024-6799,0,0,d264d144b11594f6ded9670466775d4f3f4cc730c0f4ee32dd0c581019252c1d,2024-07-19T13:01:44.567000
 CVE-2024-6801,0,0,6cf94e1980aea6fcc25b038d583cb2250e04ba4c9461d4d907e1f9ce16b1e09a,2024-07-19T14:55:25.753000
-CVE-2024-6802,0,1,0911fc614ea139d423cd023a1b26ff351c1061407fddd3917beb9c821ca9c47f,2024-07-21T15:15:02.190000
+CVE-2024-6802,0,0,0911fc614ea139d423cd023a1b26ff351c1061407fddd3917beb9c821ca9c47f,2024-07-21T15:15:02.190000
 CVE-2024-6803,0,0,e77960f60e5c3ea5b22b60c53aac93b8bf6ffc93dd5f015dabaabc8b5a77736e,2024-07-19T15:01:50.250000
 CVE-2024-6807,0,0,36a1bf799eb85168b836021ed001160a7d96eb0cb1f17f7dd33adcef058c2a69,2024-07-21T13:15:02.420000
 CVE-2024-6808,0,0,2df5a702fa4af6687f0c8dc8e100812ff9b6b346801edb239f41e0ca638c0076,2024-07-19T15:04:43.837000
@@ -257659,8 +257662,8 @@ CVE-2024-6952,0,0,0b958dd458faf92d43d702fc4a93a360d4ed9f5f4d3845ad3cc619169ea197
 CVE-2024-6953,0,0,ac626fafed478ea1eac8d87958db8ede5e45a39b6599affc1b81aaf01cbb6e8b,2024-07-21T12:15:02.500000
 CVE-2024-6954,0,0,1cf3dfbf4eaaccb96c497b4a9bcb5e1be80275e0c2c7db77802020cf062d1366,2024-07-21T13:15:03.130000
 CVE-2024-6955,0,0,490c287acd1917b79b57fc5e5ed200553e1c21acd5c1885d479b585931059799,2024-07-21T13:15:03.580000
-CVE-2024-6956,1,1,1a97f2d8a886c67d8e14f4034927dcbf7d7461248f3d4bf31e7720a6f4a33052,2024-07-21T14:15:03.373000
-CVE-2024-6957,1,1,0ca8bd7f7e134058544a1b917fa657b20e9b1fc841895178aa2a43854c4a23d3,2024-07-21T15:15:03.267000
-CVE-2024-6958,1,1,10c35a562f104bf26edc34cda5745e8508d2fc551bc37e1036cb77cc67be3c81,2024-07-21T15:15:03.720000
+CVE-2024-6956,0,0,1a97f2d8a886c67d8e14f4034927dcbf7d7461248f3d4bf31e7720a6f4a33052,2024-07-21T14:15:03.373000
+CVE-2024-6957,0,0,0ca8bd7f7e134058544a1b917fa657b20e9b1fc841895178aa2a43854c4a23d3,2024-07-21T15:15:03.267000
+CVE-2024-6958,0,0,10c35a562f104bf26edc34cda5745e8508d2fc551bc37e1036cb77cc67be3c81,2024-07-21T15:15:03.720000
 CVE-2024-6960,0,0,ba4c074aecd7169a6139d543cba8cbfb41667ce709a3bfbb365e6f9e1f60679c,2024-07-21T10:15:04.497000
 CVE-2024-6961,0,0,1a698a573fc6a37f490849f49b78d0c6e20175ea7184cf2bdf39116d6d0eac08,2024-07-21T11:15:03.187000