Page(s) : 1 ... 72 73 74 75 76 77 78 79 80 81 [82] 83 84 85 86 87 88 89 90 91 92 ... | Result(s) : 39743 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
9.8 | 2023-10-31 | CVE-2023-33927 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeisle Multiple Page Generator Plugin – MPG multiple-pages-gen... |
9.8 | 2023-10-31 | CVE-2023-35879 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WooCommerce Product Vendors allows SQL Injection.This issue affec... |
9.8 | 2023-10-31 | CVE-2023-36508 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in BestWebSoft Contact Form to DB by BestWebSoft – Messages Database... |
9.8 | 2023-10-31 | CVE-2023-37966 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Solwin Infotech User Activity Log user-activity-log allows SQL In... |
9.8 | 2023-10-31 | CVE-2023-42425 | cve | An issue in Turing Video Turing Edge+ EVC5FD v.1.38.6 allows remote attacker to execute arbitrary code and obtain sensitive information via the cloud connection components. |
9.8 | 2023-10-31 | CVE-2023-46993 | cve | In TOTOLINK A3300R V17.0.0cu.557_B20221024 when dealing with setLedCfg request, there is no verification for the enable parameter, which can lead to command injection. |
9.8 | 2023-10-31 | CVE-2023-36263 | cve | Prestashop opartlimitquantity 1.4.5 and before is vulnerable to SQL Injection. OpartlimitquantityAlertlimitModuleFrontController::displayAjaxPushAlertMessage()` has sensitive SQ... |
9.8 | 2023-10-31 | CVE-2023-43139 | cve | An issue in franfinance before v.2.0.27 allows a remote attacker to execute arbitrary code via the validation.php, and controllers/front/validation.php components. |
9.8 | 2023-10-31 | CVE-2023-5865 | cve | Insufficient Session Expiration in GitHub repository thorsten/phpmyfaq prior to 3.2.2. |
9.8 | 2023-10-31 | CVE-2023-27846 | cve | SQL injection vulnerability found in PrestaShop themevolty v.4.0.8 and before allow a remote attacker to gain privileges via the tvcmsblog, tvcmsvideotab, tvcmswishlist, tvcmsbr... |
9.8 | 2023-10-31 | CVE-2023-45378 | cve | In the module "PrestaBlog" (prestablog) version 4.4.7 and before from HDclic for PrestaShop, a guest can perform SQL injection. The script ajax slider_positions.php has a sensit... |
9.8 | 2023-10-31 | CVE-2023-46356 | cve | In the module "CSV Feeds PRO" (csvfeeds) before 2.6.1 from Bl Modules for PrestaShop, a guest can perform SQL injection. The method `SearchApiCsv::getProducts()` has sensitive S... |
9.8 | 2023-10-31 | CVE-2023-47174 | cve | Thorn SFTP gateway 3.4.x before 3.4.4 uses Pivotal Spring Framework for Java deserialization of untrusted data, which is not supported by Pivotal, a related issue to CVE-2016-10... |
9.8 | 2023-10-30 | CVE-2023-44397 | cve | CloudExplorer Lite is an open source, lightweight cloud management platform. Prior to version 1.4.1, the gateway filter of CloudExplorer Lite uses a controller with path startin... |
9.8 | 2023-10-30 | CVE-2023-46502 | cve | An issue in openCRX v.5.2.2 allows a remote attacker to read internal files and execute server side request forgery attack via insecure DocumentBuilderFactory. |
9.8 | 2023-10-30 | CVE-2023-43792 | cve | baserCMS is a website development framework. In versions 4.6.0 through 4.7.6, there is a Code Injection vulnerability in the mail form of baserCMS. As of time of publication, no... |
9.8 | 2023-10-30 | CVE-2023-43649 | cve | baserCMS is a website development framework. Prior to version 4.8.0, there is a cross site request forgery vulnerability in the content preview feature of baserCMS. Version 4.8.... |
9.8 | 2023-10-30 | CVE-2023-47104 | cve | tinyfiledialogs (aka tiny file dialogs) before 3.15.0 allows shell metacharacters (such as a backquote or a dollar sign) in titles, messages, and other input data. NOTE: this is... |
9.1 | 2023-10-30 | CVE-2023-5832 | cve | Improper Input Validation in GitHub repository mintplex-labs/anything-llm prior to 0.1.0. |
9.8 | 2023-10-30 | CVE-2023-5843 | cve | The Ads by datafeedr.com plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 1.1.3 via the 'dfads_ajax_load_ads' function. Th... |
Page(s) : 1 ... 72 73 74 75 76 77 78 79 80 81 [82] 83 84 85 86 87 88 89 90 91 92 ... | Result(s) : 39743 |