| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 323730 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-06-18 | CVE-2025-50202 | cve | Lychee is a free photo-management tool. In versions starting from 6.6.6 to before 6.6.10, an attacker can leak local files including environment variables, nginx logs, other use... |
| N/A | 2025-06-18 | CVE-2025-51381 | cve | An authentication bypass vulnerability exists in KCM3100 Ver1.4.2 and earlier. If this vulnerability is exploited, an attacker may bypass the authentication of the product from ... |
| N/A | 2025-06-18 | CVE-2025-4955 | cve | The tarteaucitron.io WordPress plugin before 1.9.5 uses query parameters from YouTube oEmbed URLs without sanitizing these parameters correctly, which could allow users with the... |
| 9.8 | 2025-06-18 | CVE-2025-1562 | cve | The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit plugin for WordPress is vulnerable to unauthorized arbitrary plugin inst... |
| N/A | 2025-06-18 | CVE-2025-5981 | cve | Arbitrary file write as the OSV-SCALIBR user on the host system via a path traversal vulnerability when using OSV-SCALIBR's unpack() function for container images. Particul... |
| N/A | 2025-06-18 | CVE-2025-23252 | cve | The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to gain access to restricted components. A successful exploit of this vulnerability may lead to informat... |
| 8.8 | 2025-06-18 | CVE-2025-4413 | cve | The Pixabay Images plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the pixabay_upload function in all versions up to, and inc... |
| N/A | 2025-06-17 | CVE-2025-49593 | cve | Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. ... |
| N/A | 2025-06-17 | CVE-2025-49825 | cve | Teleport provides connectivity, authentication, access controls and audit for infrastructure. Community Edition versions before and including 17.5.1 are vulnerable to remote aut... |
| N/A | 2025-06-17 | CVE-2025-49149 | cve | Dify is an open-source LLM app development platform. In version 1.2.0, there is insufficient filtering of user input by web applications. Attackers can use website vulnerabiliti... |
| 7.5 | 2025-06-17 | CVE-2025-33122 | cve | IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 could allow a user to gain elevated privileges due to an unqualified library call in IBM Advanced Job Scheduler for i. A malicious actor could ... |
| N/A | 2025-06-17 | CVE-2025-47865 | cve | A Local File Inclusion vulnerability in a Trend Micro Apex Central widget below version 8.0.6955 could allow an attacker to gain remote code execution on affected installations. |
| N/A | 2025-06-17 | CVE-2025-47866 | cve | An unrestricted file upload vulnerability in a Trend Micro Apex Central widget below version 8.0.6955 could allow an attacker to upload arbitrary files on affected installations. |
| N/A | 2025-06-17 | CVE-2025-47867 | cve | A Local File Inclusion vulnerability in a Trend Micro Apex Central widget in versions below 8.0.6955 could allow an attacker to include arbitrary files to execute as PHP code an... |
| N/A | 2025-06-17 | CVE-2025-49219 | cve | An insecure deserialization operation in Trend Micro Apex Central below versions 8.0.7007 could lead to a pre-authentication remote code execution on affected installations. Not... |
| N/A | 2025-06-17 | CVE-2025-49220 | cve | An insecure deserialization operation in Trend Micro Apex Central below version 8.0.7007 could lead to a pre-authentication remote code execution on affected installations. Note... |
| N/A | 2025-06-17 | CVE-2025-34509 | cve | Sitecore Experience Manager (XM) and Experience Platform (XP) versions 10.1 to 10.1.4 rev. 011974 PRE, all versions of 10.2, 10.3 to 10.3.3 rev. 011967 PRE, and 10.4 to 10.4.1 r... |
| N/A | 2025-06-17 | CVE-2025-34510 | cve | Sitecore Experience Manager (XM), Experience Platform (XP), and Experience Commerce (XC) versions 9.0 through 9.3 and 10.0 through 10.4 are affected by a Zip Slip vulnerability.... |
| N/A | 2025-06-17 | CVE-2025-34511 | cve | Sitecore PowerShell Extensions, an add-on to Sitecore Experience Manager (XM) and Experience Platform (XP), through version 7.0 is vulnerable to an unrestricted file upload issu... |
| N/A | 2025-06-17 | CVE-2025-49154 | cve | An insecure access control vulnerability in Trend Micro Apex One and Trend Micro Worry-Free Business Security could allow a local attacker to overwrite key memory-mapped files w... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 323730 |
