| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 300446 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-07-05 | CVE-2025-7074 | cve | A vulnerability classified as problematic has been found in vercel hyper up to 3.4.1. This affects the function expand/braceExpand/ignoreMap of the file hyper/bin/rimraf-standal... |
| N/A | 2025-07-05 | CVE-2025-26850 | cve | The agent in Quest KACE Systems Management Appliance (SMA) before 14.0.97 and 14.1.x before 14.1.19 potentially allows privilege escalation on managed systems. |
| N/A | 2025-07-05 | CVE-2025-43711 | cve | Tunnelblick 3.5beta06 before 7.0, when incompletely uninstalled, allows attackers to execute arbitrary code as root (upon the next boot) by dragging a crafted Tunnelblick.app fi... |
| N/A | 2025-07-05 | CVE-2025-53603 | cve | In Alinto SOPE SOGo 2.0.2 through 5.12.2, sope-core/NGExtensions/NGHashMap.m allows a NULL pointer dereference and SOGo crash via a request in which a parameter in the query str... |
| N/A | 2025-07-05 | CVE-2025-53604 | cve | The web-push crate before 0.10.3 for Rust allows a denial of service (memory consumption) in the built-in clients via a large integer in a Content-Length header. |
| N/A | 2025-07-05 | CVE-2025-53605 | cve | The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::coded_input_stream::CodedInputStream::skip_group parsing of unknown fields in untrusted i... |
| N/A | 2025-07-05 | CVE-2024-58254 | cve | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-11738. Reason: This candidate is a duplicate of CVE-2024-11738. Notes: All CVE users should reference CVE... |
| N/A | 2025-07-05 | CVE-2025-47227 | cve | In the Production Environment extension in Netmake ScriptCase through 9.12.006 (23), the Administrator password reset mechanism is mishandled. Making both a GET and a POST reque... |
| N/A | 2025-07-05 | CVE-2025-47228 | cve | In the Production Environment extension in Netmake ScriptCase through 9.12.006 (23), shell injection in the SSH connection settings allows authenticated attackers to execute sys... |
| N/A | 2025-07-05 | CVE-2023-50786 | cve | Dradis through 4.16.0 allows referencing external images (resources) over HTTPS, instead of forcing the use of embedded (uploaded) images. This can be leveraged by an authorized... |
| N/A | 2025-07-04 | CVE-2025-53365 | cve | The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.10.0, if a client deliberately triggers an exception... |
| N/A | 2025-07-04 | CVE-2025-53366 | cve | The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.9.4, a validation error in the MCP SDK can cause an ... |
| 4.3 | 2025-07-04 | CVE-2025-7070 | cve | A vulnerability has been found in IROAD Dashcam Q9 up to 20250624 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component MFA ... |
| N/A | 2025-07-04 | CVE-2025-48952 | cve | NetAlertX is a network, presence scanner, and alert framework. Prior to version 25.6.7, a vulnerability in the authentication logic allows users to bypass password verification ... |
| N/A | 2025-07-04 | CVE-2025-53483 | cve | ArchivePage.php, UnarchivePage.php, and VoterEligibilityPage#executeClear() do not validate request methods or CSRF tokens, allowing attackers to trigger sensitive actions if an... |
| N/A | 2025-07-04 | CVE-2025-53484 | cve | User-controlled inputs are improperly escaped in: * VotePage.php (poll option input) * ResultPage::getPagesTab() and getErrorsTab() (user-controllable page names)... |
| N/A | 2025-07-04 | CVE-2025-53485 | cve | SetTranslationHandler.php does not validate that the user is an election admin, allowing any (even unauthenticated) user to change election-related translation text. While parti... |
| 3.3 | 2025-07-04 | CVE-2025-7067 | cve | A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_serialize_node_cb of the file src/H5FScache.c. The manipu... |
| N/A | 2025-07-04 | CVE-2025-53602 | cve | Zipkin through 3.5.1 has a /heapdump endpoint (associated with the use of Spring Boot Actuator), a similar issue to CVE-2025-48927. |
| 3.3 | 2025-07-04 | CVE-2025-7068 | cve | A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5FL__malloc of the file src/H5FL.c. The manipulation leads ... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 300446 |
