| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 271970 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-04-23 | CVE-2024-3889 | cve | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Advanced Accordion widget in all versions up to,... |
| N/A | 2024-04-23 | CVE-2023-48183 | cve | QuickJS before c4cdd61 has a build_for_in_iterator NULL pointer dereference because of an erroneous lexical scope of "this" with eval. |
| N/A | 2024-04-23 | CVE-2023-48184 | cve | QuickJS before 7414e5f has a quickjs.h JS_FreeValueRT use-after-free because of incorrect garbage collection of async functions with closures. |
| N/A | 2024-04-23 | CVE-2024-4031 | cve | Unquoted Search Path or Element vulnerability in Logitech MEVO WEBCAM APP on Windows allows Local Execution of Code. |
| N/A | 2024-04-23 | CVE-2024-3664 | cve | The Quick Featured Images plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the set_thumbnail and delete_thumbnail fun... |
| N/A | 2024-04-23 | CVE-2024-0900 | cve | The Elespare – Build Your Blog, News & Magazine Websites with Expert-Designed Template Kits. One Click Import: No Coding Skills Required! plugin for WordPress is vulnerable to u... |
| N/A | 2024-04-23 | CVE-2024-3185 | cve | A key used in logging.json does not follow the least privilege principle by default and is exposed to local users in the Rapid7 Platform. This allows an attacker with local ac... |
| N/A | 2024-04-23 | CVE-2024-3293 | cve | The rtMedia for WordPress, BuddyPress and bbPress plugin for WordPress is vulnerable to blind SQL Injection via the rtmedia_gallery shortcode in all versions up to, and includin... |
| 5.5 | 2024-04-23 | CVE-2024-1241 | cve | Watchdog Antivirus v1.6.415 is vulnerable to a Denial of Service vulnerability by triggering the 0x80002014 IOCTL code of the wsdk-driver.sys driver. |
| 5.5 | 2024-04-23 | CVE-2024-2760 | cve | Bkav Home v7816, build 2403161130 is vulnerable to a Memory Information Leak vulnerability by triggering the 0x222240 IOCTL code of the BkavSDFlt.sys driver. |
| N/A | 2024-04-22 | CVE-2024-31036 | cve | A heap-buffer-overflow vulnerability in the read_byte function in NanoMQ v.0.21.7 allows attackers to cause a denial of service via transmission of crafted hexstreams. |
| N/A | 2024-04-22 | CVE-2024-32459 | cve | FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-o... |
| N/A | 2024-04-22 | CVE-2024-32460 | cve | FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 o... |
| N/A | 2024-04-22 | CVE-2024-32461 | cve | LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A SQL injection vulnerability in POST /search/search=packages in LibreNMS prior to version 24.4.0 all... |
| N/A | 2024-04-22 | CVE-2024-32479 | cve | LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. Prior to version 24.4.0, there is improper sanitization on the `Service` template name, which can lea... |
| N/A | 2024-04-22 | CVE-2024-32480 | cve | LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. Versions prior to 24.4.0 are vulnerable to SQL injection. The `order` parameter is obtained from `$re... |
| N/A | 2024-04-22 | CVE-2024-32653 | cve | jadx is a Dex to Java decompiler. Prior to version 1.5.0, the package name is not filtered before concatenation. This can be exploited to inject arbitrary code into the packag... |
| N/A | 2024-04-22 | CVE-2024-32656 | cve | Ant Media Server is live streaming engine software. A local privilege escalation vulnerability in present in versions 2.6.0 through 2.8.2 allows any unprivileged operating syste... |
| N/A | 2024-04-22 | CVE-2024-32657 | cve | Hydra is a Continuous Integration service for Nix based projects. Attackers can execute arbitrary code in the browser context of Hydra and execute authenticated HTTP requests. T... |
| N/A | 2024-04-22 | CVE-2024-3177 | cve | A security issue was discovered in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plug... |
| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 271970 |
