| Page(s) : 1 ... 7 8 9 10 11 12 13 14 15 16 [17] 18 19 20 21 22 23 24 25 26 27 ... | Result(s) : 277745 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-05-29 | CVE-2024-35512 | cve | An issue in hmq v1.5.5 allows attackers to cause a Denial of Service (DoS) via crafted requests. |
| N/A | 2024-05-29 | CVE-2024-28826 | cve | Improper restriction of local upload and download paths in check_sftp in Checkmk before 2.3.0p4, 2.2.0p27, 2.1.0p44, and in Checkmk 2.0.0 (EOL) allows attackers with sufficient ... |
| N/A | 2024-05-29 | CVE-2023-52881 | cve | In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepen... |
| N/A | 2024-05-29 | CVE-2024-27313 | cve | Zoho ManageEngine PAM360 is vulnerable to Stored XSS vulnerability. This vulnerability is applicable only in the version 6610. |
| N/A | 2024-05-29 | CVE-2023-42005 | cve | IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data 3.5, 4.0, 4.5, 4.6, 4.7, and 4.8 could allow a user with access to the Kubernetes pod, to make system calls... |
| N/A | 2024-05-29 | CVE-2024-25976 | cve | When LDAP authentication is activated in the configuration it is possible to obtain reflected XSS execution by creating a custom URL that the victim only needs to open in order ... |
| N/A | 2024-05-29 | CVE-2024-25977 | cve | The application does not change the session token when using the login or logout functionality. An attacker can set a session token in the victim's browser (e.g. via XSS) a... |
| 6.4 | 2024-05-29 | CVE-2024-5039 | cve | The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up ... |
| N/A | 2024-05-29 | CVE-2024-5185 | cve | The EmbedAI application is susceptible to security issues that enable Data Poisoning attacks. This weakness could result in the application becoming compromised, leading to unau... |
| 8.8 | 2024-05-29 | CVE-2023-6743 | cve | The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.5.89 v... |
| N/A | 2024-05-29 | CVE-2024-21512 | cve | Versions of the package mysql2 before 3.9.8 are vulnerable to Prototype Pollution due to improper user input sanitization passed to fields and tables when using nestTables. |
| 8.1 | 2024-05-29 | CVE-2024-4611 | cve | The AppPresser plugin for WordPress is vulnerable to improper missing encryption exception handling on the 'decrypt_value' and on the 'doCookieAuth' function... |
| N/A | 2024-05-29 | CVE-2024-3050 | cve | The Site Reviews WordPress plugin before 7.0.0 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used t... |
| N/A | 2024-05-29 | CVE-2024-3921 | cve | The Gianism WordPress plugin through 5.1.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site S... |
| N/A | 2024-05-29 | CVE-2024-3937 | cve | The Playlist for Youtube WordPress plugin through 1.32 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored ... |
| 4.4 | 2024-05-29 | CVE-2024-4419 | cve | The Fetch JFT plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.8.3 due to insufficient input sanitiza... |
| N/A | 2024-05-29 | CVE-2024-36014 | cve | In the Linux kernel, the following vulnerability has been resolved: drm/arm/malidp: fix a possible null pointer dereference In malidp_mw_connector_reset, new memory is allocat... |
| N/A | 2024-05-29 | CVE-2024-36015 | cve | In the Linux kernel, the following vulnerability has been resolved: ppdev: Add an error check in register_device In register_device, the return value of ida_simple_get is unch... |
| N/A | 2024-05-29 | CVE-2024-5086 | cve | The Essential Addons for Elementor PRO – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... |
| 9.1 | 2024-05-29 | CVE-2024-3412 | cve | The WP STAGING WordPress Backup Plugin – Migration Backup Restore plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the wpstg_p... |
| Page(s) : 1 ... 7 8 9 10 11 12 13 14 15 16 [17] 18 19 20 21 22 23 24 25 26 27 ... | Result(s) : 277745 |
