| Page(s) : 1 ... 25 26 27 28 29 30 31 32 33 34 [35] 36 37 38 39 40 41 42 43 44 45 ... | Result(s) : 89852 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.2 | 2024-02-05 | CVE-2024-0668 | cve | The Advanced Database Cleaner plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.1.3 via deserialization of untrusted input in th... |
| 7.2 | 2024-02-05 | CVE-2024-0699 | cve | The AI Engine: Chatbots, Generators, Assistants, GPT 4 and more! plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ad... |
| 7.5 | 2024-02-05 | CVE-2024-0709 | cve | The Cryptocurrency Widgets – Price Ticker & Coins List plugin for WordPress is vulnerable to SQL Injection via the 'coinslist' parameter in versions 2.0 to 2.6.5 due t... |
| 7.5 | 2024-02-05 | CVE-2024-0761 | cve | The File Manager plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.2.1 due to insufficient randomness in the backup fi... |
| 7.5 | 2024-02-05 | CVE-2024-1072 | cve | The Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode plugin for WordPress is vulnerable to unauthorized modification of data... |
| 7.1 | 2024-02-05 | CVE-2024-24595 | cve | Allegro AI’s open-source version of ClearML stores passwords in plaintext within the MongoDB instance, resulting in a compromised server leaking all user emails and passwords. |
| 8.8 | 2024-02-05 | CVE-2023-5677 | cve | Brandon Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi did not have a sufficient input validation allowing for a possible remote code execution. This ... |
| 8.8 | 2024-02-05 | CVE-2023-5800 | cve | Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay.cgi did not have a sufficient input validation allowing for a possible remote code... |
| 7.5 | 2024-02-05 | CVE-2024-20003 | cve | In Modem NL1, there is a possible system crash due to an improper input validation. This could lead to remote denial of service, if NW sent invalid NR RRC Connection Setup messa... |
| 7.5 | 2024-02-05 | CVE-2024-20004 | cve | In Modem NL1, there is a possible system crash due to an improper input validation. This could lead to remote denial of service, if NW sent invalid NR RRC Connection Setup messa... |
| 7.5 | 2024-02-05 | CVE-2024-20007 | cve | In mp3 decoder, there is a possible out of bounds write due to a race condition. This could lead to remote escalation of privilege with no additional execution privileges needed... |
| 8.8 | 2024-02-05 | CVE-2024-20009 | cve | In alac decoder, there is a possible out of bounds write due to an incorrect error handling. This could lead to remote escalation of privilege with no additional execution privi... |
| 7.8 | 2024-02-05 | CVE-2024-20015 | cve | In telephony, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges n... |
| 7.8 | 2024-02-05 | CVE-2024-22667 | cve | Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback func... |
| 7 | 2024-02-05 | CVE-2023-5249 | cve | Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper memory processing operat... |
| 7.8 | 2024-02-05 | CVE-2023-5643 | cve | Out-of-bounds Write vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-... |
| 7.8 | 2024-02-04 | CVE-2021-4435 | cve | An untrusted search path vulnerability was found in Yarn. When a victim runs certain Yarn commands in a directory with attacker-controlled content, malicious commands could be e... |
| 7.5 | 2024-02-04 | CVE-2023-52425 | cve | libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills a... |
| 7.2 | 2024-02-04 | CVE-2021-46902 | cve | An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus a... |
| 7.5 | 2024-02-04 | CVE-2024-25062 | cve | An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing cra... |
| Page(s) : 1 ... 25 26 27 28 29 30 31 32 33 34 [35] 36 37 38 39 40 41 42 43 44 45 ... | Result(s) : 89852 |
