| Page(s) : 1 ... 24 25 26 27 28 29 30 31 32 33 [34] 35 36 37 38 39 40 41 42 43 44 ... | Result(s) : 9033 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.7 | 2022-09-06 | CVE-2022-35931 | cve | Nextcloud Password Policy is an app that enables a Nextcloud server admin to define certain rules for passwords. Prior to versions 22.2.10, 23.0.7, and 24.0.3 the random passwor... |
| 2.7 | 2022-09-06 | CVE-2022-2945 | cve | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Directory Traversal in versions up to, and including, 5.5.3 via the 'type' paramet... |
| 3.3 | 2022-09-06 | CVE-2022-29053 | cve | A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0.0 through 7.0.5 and below 7.0.0 may allow an a... |
| 3.8 | 2022-09-01 | CVE-2022-2256 | cve | A Stored Cross-site scripting (XSS) vulnerability was found in keycloak as shipped in Red Hat Single Sign-On 7. This flaw allows a privileged attacker to execute malicious scrip... |
| 2.7 | 2022-08-29 | CVE-2022-2556 | cve | The Mailchimp for WooCommerce WordPress plugin before 2.7.2 has an AJAX action that allows high privilege users to perform a POST request on behalf of the server to the internal... |
| 3.3 | 2022-08-26 | CVE-2021-3644 | cve | A flaw was found in wildfly-core in all versions. If a vault expression is in the form of a single attribute that contains multiple expressions, a user who was granted access to... |
| 2.7 | 2022-08-26 | CVE-2022-36168 | cve | A directory traversal vulnerability was discovered in Wuzhicms 4.1.0. via /coreframe/app/attachment/admin/index.php: |
| 3.3 | 2022-08-26 | CVE-2021-3574 | cve | A vulnerability was found in ImageMagick-7.0.11-5, where executing a crafted file with the convert command, ASAN detects memory leaks. |
| 3.1 | 2022-08-25 | CVE-2022-36117 | cve | An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authentic... |
| 3.3 | 2022-08-24 | CVE-2021-4217 | cve | A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows an attacker to in... |
| 2.7 | 2022-08-22 | CVE-2022-2841 | cve | A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Unins... |
| 3.3 | 2022-08-22 | CVE-2022-31237 | cve | Dell PowerScale OneFS, versions 9.2.0 up to and including 9.2.1.12 and 9.3.0.5 contain an improper preservation of permissions vulnerability in SyncIQ. A low privileged local at... |
| 3.5 | 2022-08-22 | CVE-2022-34771 | cve | Tabit - arbitrary SMS send on Tabits behalf. The resend OTP API of tabit allows an adversary to send messages on tabits behalf to anyone registered on the system - the API recei... |
| 3.3 | 2022-08-18 | CVE-2021-23188 | cve | Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an authenticated user to potentially enable information disclosure via loca... |
| 3.2 | 2022-08-17 | CVE-2020-14394 | cve | An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged g... |
| 3.5 | 2022-08-16 | CVE-2022-37438 | cve | In Splunk Enterprise versions in the following table, an authenticated user can craft a dashboard that could potentially leak information (for example, username, email, and real... |
| 3.3 | 2022-08-15 | CVE-2022-36007 | cve | Venice is a Clojure inspired sandboxed Lisp dialect with excellent Java interoperability. A partial path traversal issue exists within the functions `load-file` and `load-resour... |
| 3.3 | 2022-08-12 | CVE-2022-20336 | cve | In Settings, there is a possible installed application disclosure due to a missing permission check. This could lead to local information disclosure of applications allow-listed... |
| 3.3 | 2022-08-12 | CVE-2022-20335 | cve | In Wifi Slice, there is a possible way to adjust Wi-Fi settings even when the permission has been disabled due to a missing permission check. This could lead to local escalation... |
| 3.3 | 2022-08-12 | CVE-2022-20338 | cve | In HierarchicalUri.readFrom of Uri.java, there is a possible way to craft a malformed Uri object due to improper input validation. This could lead to a local escalation of privi... |
| Page(s) : 1 ... 24 25 26 27 28 29 30 31 32 33 [34] 35 36 37 38 39 40 41 42 43 44 ... | Result(s) : 9033 |
