| Page(s) : 1 ... 15 16 17 18 19 20 21 22 23 24 [25] 26 27 28 29 30 31 32 33 34 35 ... | Result(s) : 8025 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2023-01-23 | CVE-2023-24069 | cve | Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to obtain potentially sensitive attachments sent in messages from the attachments.noindex directory. ... |
| 2.3 | 2023-01-18 | CVE-2022-34399 | cve | Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. A malicious user with admin privileges could potentially exploit this vulnerability by ... |
| 3.7 | 2023-01-18 | CVE-2023-21843 | cve | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Sound). Supported versions that are affected are Oracle Java SE: 8u... |
| 2.7 | 2023-01-18 | CVE-2023-21874 | cve | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vul... |
| 2.7 | 2023-01-18 | CVE-2023-21882 | cve | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerab... |
| 3.8 | 2023-01-18 | CVE-2023-21885 | cve | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easi... |
| 3.8 | 2023-01-18 | CVE-2023-21889 | cve | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easi... |
| 3.1 | 2023-01-16 | CVE-2022-4309 | cve | The Subscribe2 WordPress plugin before 10.38 does not have CSRF check when deleting users, which could allow attackers to make a logged in admin delete arbitrary users by knowin... |
| 3.5 | 2023-01-13 | CVE-2023-22489 | cve | Flarum is a discussion platform for websites. If the first post of a discussion is permanently deleted but the discussion stays visible, any actor who can view the discussion is... |
| 3.8 | 2023-01-13 | CVE-2023-0091 | cve | A flaw was found in Keycloak, where it did not properly check client tokens for possible revocation in its client credential flow. This flaw allows an attacker to access or modi... |
| 3.8 | 2023-01-12 | CVE-2022-4342 | cve | An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 1... |
| 2.4 | 2023-01-11 | CVE-2023-20528 | cve | Insufficient input validation in the SMU may allow a physical attacker to exfiltrate SMU memory contents over the I2C bus potentially leading to a loss of confidentiality. |
| 3.5 | 2023-01-10 | CVE-2023-22469 | cve | Deck is a kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud. When getting the reference preview for Deck car... |
| 3.3 | 2023-01-10 | CVE-2023-21759 | cve | Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability |
| 3.5 | 2023-01-09 | CVE-2022-3343 | cve | The WPQA Builder WordPress plugin before 5.9.3 (which is a companion plugin used with Discy and Himer Discy WordPress themes) incorrectly tries to validate that a user already f... |
| 3.1 | 2023-01-09 | CVE-2022-4102 | cve | The Royal Elementor Addons WordPress plugin before 1.3.56 does not have authorization and CSRF checks when deleting a template and does not ensure that the post to be deleted is... |
| 2.1 | 2023-01-09 | CVE-2023-22473 | cve | Talk-Android enables users to have video & audio calls through Nextcloud on Android. Due to passcode bypass, an attacker is able to access the user's Nextcloud files and vi... |
| 3.5 | 2023-01-05 | CVE-2022-46168 | cve | Discourse is an option source discussion platform. Prior to version 2.8.14 on the `stable` branch and version 2.9.0.beta15 on the `beta` and `tests-passed` branches, recipients ... |
| 2.7 | 2023-01-02 | CVE-2022-4109 | cve | The Wholesale Market for WooCommerce WordPress plugin before 2.0.0 does not validate user input against path traversal attacks, allowing high privilege users such as admin to do... |
| 3.3 | 2023-01-01 | CVE-2022-47952 | cve | lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer whether any file exists, even within a protected directory tree, because "Failed t... |
| Page(s) : 1 ... 15 16 17 18 19 20 21 22 23 24 [25] 26 27 28 29 30 31 32 33 34 35 ... | Result(s) : 8025 |
