Web Application Detections—November 2024
In November, Qualys released QIDs targeting vulnerabilities in several widely used software products, including Apache HertzBeat, Apache Nifi, Apache OFBiz, Apache Tomcat, AVSCMS, Bootstrap, CodeChecker, CyberPanel, Envoy, Ivanti CSA, Ivanti Endpoint Manager, Ivanti ICS, Ivanti CSA, JavaScript, Jenkins, JetBrains YouTrack, Langflow, Liferay, Metabase, Moodle, Nexus, Ollama, OpenSSL, PHP, PyLoad, Palo Alto Networks PAN-OS, Roundcube Webmail, Symfony, WordPress, Zabbix, ZenML. The QIDs released to detect the vulnerabilities in the frameworks above are listed below.
The following table lists the new QIDs released in November 2024.
| QID | Title |
|---|---|
| 151036 | Vulnerable JavaScript Library Detected PDFJS |
| 152320 | Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability (CVE-2024-37383) |
| 152336 | WordPress SlimStat Analytics Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2024-9548) |
| 152337 | WordPress Miniorange OTP Verification with Firebase Plugin: Arbitrary User Password Change Vulnerability (CVE-2024-9862) |
| 152338 | WordPress WP Post Author Plugin: Time-based SQL Injection Vulnerability (CVE-2024-8757) |
| 152340 | WordPress Crypto Plugin: Authentication Bypass Vulnerability (CVE-2024-9988) |
| 152341 | WordPress Crypto Plugin: Authentication Bypass Vulnerability (CVE-2024-9989) |
| 152342 | WordPress WP Social Plugin: Authentication Bypass Vulnerability (CVE-2024-9501) |
| 152343 | WordPress WP Query Console Plugin: Remote Code Execution Vulnerability (CVE-2024-50498) |
| 152344 | WordPress AR For WordPress Plugin: Arbitrary File Upload Vulnerability (CVE-2024-50496) |
| 152345 | CyberPanel Remote Code Execution (RCE) Vulnerability (CVE-2024-51567) |
| 152346 | WordPress SurveyJS Plugin: Arbitrary File Upload Vulnerability (CVE-2024-50427)> |
| 152347 | Envoy Detected |
| 152348 | WordPress Masteriyo LMS Plugin: Unauthorized User Profile Modification Vulnerability (CVE-2024-10008) |
| 152349 | WordPress WPC Shop as a Customer Plugin: PHP Object Injection Vulnerability (CVE-2024-50416) |
| 152350 | Malicious Lottie Player Detected |
| 152351 | WordPress Meta Data and Taxonomies Filter (MDTF) Plugin: Code Injection Vulnerability (CVE-2024-50450) |
| 152352 | WordPress Crypto Plugin: Cross-Site Request Forgery Vulnerability (CVE-2024-9990) |
| 152353 | WordPress WPC Smart Messages Plugin: Local File Inclusion Vulnerability (CVE-2024-10436) |
| 152354 | WordPress AI Power Plugin: Arbitrary File Upload Vulnerability (CVE-2024-10392) |
| 152355 | WordPress Enable Shortcodes inside Widgets, Comments and Experts Plugin: Arbitrary Shortcode Execution Vulnerability (CVE-2024-9846) |
| 152356 | WordPress LiteSpeed Cache Plugin: Privilege Escalation Vulnerability (CVE-2024-50550) |
| 152357 | WordPress Royal Elementor Addons Plugin: XML External Entity (XXE) Vulnerability (CVE-2024-50442) |
| 152358 | JetBrains YouTrack Regular expression Denial of Service Vulnerability (CVE-2024-50574) |
| 152359> | Ollama Information Disclosure Vulnerability (CVE-2024-39719) |
| 152360 | Ollama Information Disclosure Vulnerability (CVE-2024-39722) |
| 152361 | Ollama Denial of Service Vulnerability (CVE-2024-39720) |
| 152362 | Ollama ZIP Archive Directory Traversal Vulnerability (CVE-2024-45436) |
| 152363 | ZenML Session Reuse Vulnerability (CVE-2024-4680) |
| 152364 | JetBrains YouTrack Prior to 2024.3.47707 Multiple Cross-site Scripting Vulnerabilities |
| 152365 | CodeChecker Authentication Bypass Vulnerability (CVE-2024-10081) |
| 152366 | WordPress WP Job Search Plugin: Arbitrary File Upload Vulnerability (CVE-2024-8615) |
| 152367 | Ivanti CSA Path Traversal Vulnerability (CVE-2024-8963) |
| 152368 | WordPress All-in-One WP Migration and Backup Plugin: Arbitrary PHP Code Injection Vulnerability (CVE-2024-9162) |
| 152369 | WordPress mFolio Lite Plugin: Authenticated File Upload Vulnerability (CVE-2024-9307) |
| 152370 | WordPress WP Job Search Plugin: Authenticated Arbitrary File Upload Vulnerability (CVE-2024-8614) |
| 152371 | WordPress Super Socializer Plugin: Authentication Bypass Vulnerability (CVE-2024-9946) |
| 152372 | PyLoad Remote Code Execution Vulnerability (CVE-2024-39205) |
| 152373 | WordPress Heateor Social Login Plugin: Authentication Bypass Vulnerability (CVE-2024-10020) |
| 152374 | WordPress Everest Backup Plugin: Sensitive Information Exposure Vulnerability (CVE-2024-10028) |
| 152375 | Moodle Badge Deletion Vulnerability (CVE-2024-43431) |
| 152376 | Moodle Cache Poisoning Vulnerability (CVE-2024-43428) |
| 152377 | Moodle Local File Inclusion (LFI) Vulnerability (CVE-2024-43440) |
| 152378 | Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-43434) |
| 152379 | Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8980) |
| 152380 | Langflow Remote Code Execution Vulnerability (CVE-2024-4806) |
| 152381 | WordPress WP Photo Album Plus Plugin: Arbitrary Shortcode Execution Vulnerability (CVE-2024-10958) |
| 152382 | Moodle User Management Vulnerability (CVE-2024-43433) |
| 152383 | Moodle Multiple Cross Site Scripting Vulnerabilities |
| 152384 | Moodle Sensitive Information Disclosure Vulnerability (CVE-2024-43429) |
| 152385 | Moodle Incorrect Authorization Vulnerability (CVE-2024-43433) |
| 152386 | Jenkins Sensitive Information Exposure Vulnerability (CVE-2024-47803) |
| 152387 | Jenkins Item Creation Restriction Bypass Vulnerability (CVE-2024-47804) |
| 152388 | Moodle Sensitive Data Exposure Vulnerability (CVE-2024-43427) |
| 152389 | Moodle HTTP Authorization Header Information Exposure Vulnerability (CVE-2024-43432) |
| 152390 | Moodle Insufficient Capability Checks Vulnerability (CVE-2024-43435)> |
| 152391 | Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability (CVE-2024-9379) |
| 152392 | Ivanti Cloud Services Appliance (CSA) OS Command Injection Vulnerability (CVE-2024-9380) |
| 152393 | Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability (CVE-2024-9381) |
| 152394 | WordPress Jetpack Plugin: Unauthenticated Feedback Data Disclosure Vulnerability (CVE-2024-9926) |
| 152395 | WordPress Relais 2FA Plugin: Authentication Bypass Vulnerability (CVE-2024-10245) |
| 152396 | WordPress MultiManager WP Plugin: Authentication Bypass Vulnerability (CVE-2024-11028) |
| 152397 | Symfony Environment Manipulation Vulnerability (CVE-2024-50340) |
| 152399 | WordPress Really Simple Security Plugin: Authentication Bypass Vulnerability (CVE-2024-10924) |
| 152401 | Ivanti Endpoint Manager Multiple Path Traversal Vulnerabilities |
| 152402 | Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities |
| 152403 | WordPress TI WooCommerce Wishlist Plugin: SQL Injection Vulnerability (CVE-2024-43917) |
| 152404 | Nexus Repository Manager 3 Hard-coded Credentials Vulnerability (CVE-2024-5764) |
| 152405 | Apache Tomcat Authentication Bypass Vulnerability (CVE-2024-52316) |
| 152406 | Apache Tomcat Request and Response Mix-up (CVE-2024-52317) |
| 152407 | Apache Tomcat Cross Site Scripting Vulnerability (CVE-2024-52318) |
| 152408 | Ivanti Connect Secure (ICS) Argument Injection Vulnerabilities (CVE-2024-39710,CVE-2024-39711,CVE-2024-39712) |
| 152409 | Ivanti Connect Secure (ICS) Argument Injection Vulnerability (CVE-2024-38655) |
| 152410 | Ivanti Connect Secure (ICS) Argument Injection Vulnerability (CVE-2024-38656) |
| 152411 | Ivanti Connect Secure (ICS) Reflected XSS Vulnerability (CVE-2024-11004) |
| 152412 | Ivanti Connect Secure (ICS) Command Injection Vulnerabilities (CVE-2024-11005,CVE-2024-11006,CVE-2024-11007) |
| 152413 | Ivanti Connect Secure (ICS) Buffer Overflow Vulnerabilities (CVE-2024-47905,CVE-2024-47907,CVE-2024-47909) |
| 152414 | Ivanti Connect Secure (ICS) Excessive Binary Privileges Vulnerability (CVE-2024-47906) |
| 152415 | Ivanti Connect Secure (ICS) NULL Pointer Dereference Vulnerability (CVE-2024-8495) |
| 152416 | Ivanti Connect Secure (ICS) Out-of-bounds Read Vulnerability (CVE-2024-37400) |
| 152417 | Ivanti Connect Secure (ICS) Use-after-free Vulnerability (CVE-2024-9420) |
| 152418 | Ivanti Connect Secure (ICS) Out-of-bounds Write Vulnerability (CVE-2024-38649) |
| 152419 | Ivanti Connect Secure (ICS) Incorrect file permissions Vulnerability (CVE-2024-39709) |
| 152420 | Apache OFBiz before 18.12.17 Multiple Vulnerabilities (CVE-2024-48962,CVE-2024-47208) |
| 152421 | Moodle Unauthorized Deletion of Report Audiences Vulnerability (CVE-2024-48898) |
| 152422 | Moodle Insecure Direct Object Reference (IDOR) Vulnerability (CVE-2024-48901) |
| 152423 | Moodle User Name Leakage via Messaging Error Vulnerability (CVE-2024-48896) |
| 152424 | Moodle RSS Feed Insecure Direct Object Reference (IDOR) Vulnerability (CVE-2024-48897) |
| 152425 | WordPress WordPress Video Robot Plugin: SQL Injection Vulnerability (CVE-2024-52431) |
| 152426 | WordPress Classified Listing Plugin: Unauthorized Modification of Data Vulnerability (CVE-2024-11194) |
| 152427 | WordPress UserPlus Plugin: Privilege Escalation Vulnerability (CVE-2024-9518) |
| 152428 | WordPress WPSchoolPress Plugin: Insecure Direct Object Reference Vulnerability (CVE-2024-9637) |
| 152429 | Apache HertzBeat Command Injection Vulnerability (CVE-2024-45505) |
| 152430 | Apache HertzBeat Deserialization of Untrusted Data Vulnerability (CVE-2024-41151) |
| 152431 | Apache HertzBeat Sensitive Information Disclosure Vulnerability (CVE-2024-45791) |
| 152432 | WordPress Clone Plugin: PHP Object Injection Vulnerability (CVE-2024-10913) |
| 152433 | WordPress WooCommerce Product Table Lite Plugin: Arbitrary Shortcode Execution Vulnerability (CVE-2024-10899) |
| 152434 | WordPress ProfileGrid Plugin: Unauthorized Modification of Data Vulnerability (CVE-2024-10900) |
| 152435 | Palo Alto Networks PAN-OS Authentication Bypass Vulnerability (CVE-2024-0012) |
| 152436 | WordPress FluentSMTP Plugin: PHP Object Injection Vulnerability (CVE-2024-9511) |
| 152437 | WordPress My Geo Posts Free Plugin: PHP Object Injection Vulnerability (CVE-2024-52433) |
| 152438 | WordPress Collect and Deliver Interface for Woocommerce (CDI) Plugin: Arbitrary File Upload Vulnerability (CVE-2024-52398) |
| 152439 | WordPress Zita Elementor Site Library Plugin: Arbitrary Code Execution Vulnerability (CVE-2024-37420) |
| 152440 | Apache NiFi Information Disclosure Vulnerability (CVE-2024-52067) |
| 152441 | WordPress Ashe Theme: Reflected Cross-Site Scripting Vulnerability (CVE-2024-9777) |
| 152442 | WordPress Royal Elementor Addons and Templates Plugin: Stored Cross-Site Scripting Vulnerability (CVE-2024-9682) |
| 152443 | Ivanti Policy Secure (IPS) Argument Injection Vulnerabilities (CVE-2024-39710,CVE-2024-39711,CVE-2024-39712) |
| 152444 | Ivanti Policy Secure (IPS) Argument Injection Vulnerability (CVE-2024-38655) |
| 152445 | Ivanti Policy Secure (IPS) Argument Injection Vulnerability (CVE-2024-38656) |
| 152446 | Ivanti Policy Secure (IPS) Reflected XSS Vulnerability (CVE-2024-11004) |
| 152447 | Ivanti Policy Secure (IPS) Command Injection Vulnerabilities (CVE-2024-11005,CVE-2024-11006,CVE-2024-11007) |
| 152448 | Ivanti Policy Secure (IPS) Buffer Overflow Vulnerabilities (CVE-2024-47905,CVE-2024-47909) |
| 152449 | Ivanti Policy Secure (IPS) Excessive Binary Privileges Vulnerability (CVE-2024-47906) |
| 152450 | Ivanti Policy Secure (IPS) NULL Pointer Dereference Vulnerability (CVE-2024-8495) |
| 152451 | Ivanti Policy Secure (IPS) Use-after-free Vulnerability (CVE-2024-9420) |
| 152452 | Ivanti Policy Secure (IPS) Incorrect file permissions Vulnerability (CVE-2024-39709) |
| 152453 | Metabase Local File Inclusion (LFI) Vulnerability (CVE-2021-41277) |
| 152454 | Adult Video Script CMS (AVSCMS) Arbitrary File Upload Vulnerability (CVE-2024-51053) |
| 152455 | Adult Video Script CMS (AVSCMS) Weak Password Policy (CVE-2024-51051) |
| 152456 | WordPress CleanTalk Spam Protect Plugin: Unauthorized Arbitrary Plugin Installation Vulnerability (CVE-2024-10542) |
| 152457 | WordPress CleanTalk Spam Protect Plugin: Unauthorized Arbitrary Plugin Installation Vulnerability (CVE-2024-10781) |
| 152458 | Jenkins Denial of Service (DoS) Vulnerability (CVE-2024-47855) |
| 152459 | Zabbix Improper Authorization Vulnerability (CVE-2024-36467) |
| 152460 | Zabbix SQL Injection Vulnerability (CVE-2024-42327) |
| 152461 | Zabbix Remote Code Inclusion Vulnerability (CVE-2024-42330) |
| 520033 | Open Secure Sockets Layer (OpenSSL) Out-of-Bounds (OOB) Memory Access Vulnerability (CVE-2024-9143) |
| 520034 | PHP Out-of-bounds Write Vulnerability (CVE-2024-8932) |
| 520035 | PHP Out-of-bounds Read Vulnerability (CVE-2024-8929) |
Qualys Notification Link: Web Application Detections Published in November 2024