| Page(s) : 1 ... 84 85 86 87 88 89 90 91 92 93 [94] 95 96 97 98 99 100 101 102 103 104 ... | Result(s) : 39756 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-10-17 | CVE-2023-27132 | cve | TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only abo... |
| 9.8 | 2023-10-17 | CVE-2023-27133 | cve | TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www folder. This may enable privilege esc... |
| 9.8 | 2023-10-17 | CVE-2023-45386 | cve | In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can perform SQL injection via `extratabspro::searchcategory()`, `extratabspro::searchpro... |
| 9.8 | 2023-10-17 | CVE-2023-44693 | cve | D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via /importexport.php. |
| 9.8 | 2023-10-17 | CVE-2023-44694 | cve | D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via /log/mailrecvview.php. |
| 9.8 | 2023-10-17 | CVE-2011-10004 | cve | A vulnerability was found in reciply Plugin up to 1.1.7 on WordPress. It has been rated as critical. This issue affects some unknown processing of the file uploadImage.php. The ... |
| 9.8 | 2023-10-16 | CVE-2023-45984 | cve | TOTOLINK X5000R V9.1.0u.6118_B20201102 and TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the lang parameter in the function setLanguageCfg. |
| 9.8 | 2023-10-16 | CVE-2023-43119 | cve | An Access Control issue discovered in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, also fixed in 22.7, 31.7.2 allows attackers to gain escalated privileges using craft... |
| 9.8 | 2023-10-16 | CVE-2023-4666 | cve | The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create a... |
| 9.8 | 2023-10-16 | CVE-2023-40852 | cve | SQL Injection vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to obtain sensitive information via crafted ... |
| 9.6 | 2023-10-16 | CVE-2023-45144 | cve | com.xwiki.identity-oauth:identity-oauth-ui is a package to aid in building identity and service providers based on OAuth authorizations. When a user logs in via the OAuth method... |
| 10 | 2023-10-16 | CVE-2023-20198 | cve | Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases ... |
| 9.1 | 2023-10-16 | CVE-2023-45685 | cve | Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attack... |
| 9.8 | 2023-10-16 | CVE-2023-3991 | cve | An OS command injection vulnerability exists in the httpd iperfrun.cgi functionality of FreshTomato 2023.3. A specially crafted HTTP request can lead to arbitrary command execut... |
| 9.8 | 2023-10-16 | CVE-2023-36340 | cve | TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain a stack overflow via the http_host parameter in the function loginAuth. |
| 9.8 | 2023-10-16 | CVE-2023-36947 | cve | TOTOLINK X5000R V9.1.0u.6118_B20201102 and TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the File parameter in the function UploadCustomM... |
| 9.8 | 2023-10-16 | CVE-2023-36952 | cve | TOTOLINK CP300+ V5.2cu.7594_B20200910 was discovered to contain a stack overflow via the pingIp parameter in the function setDiagnosisCfg. |
| 9.8 | 2023-10-16 | CVE-2023-36950 | cve | TOTOLINK X5000R V9.1.0u.6118_B20201102 and TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the http_host parameter in the function loginAuth. |
| 9.8 | 2023-10-16 | CVE-2023-36953 | cve | TOTOLINK CP300+ V5.2cu.7594_B20200910 and before is vulnerable to command injection. |
| 9.8 | 2023-10-16 | CVE-2023-36954 | cve | TOTOLINK CP300+ V5.2cu.7594_B20200910 and before is vulnerable to command injection. |
| Page(s) : 1 ... 84 85 86 87 88 89 90 91 92 93 [94] 95 96 97 98 99 100 101 102 103 104 ... | Result(s) : 39756 |
