Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... Result(s) : 206353

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
N/A 2023-02-02 CVE-2023-25012 cve The Linux kernel through 6.1.9 has a Use-After-Free in bigben_remove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too...
N/A 2023-02-01 CVE-2022-37034 cve In dotCMS 5.x-22.06, it is possible to call the TempResource multiple times, each time requesting the dotCMS server to download a large file. If done repeatedly, this will resul...
N/A 2023-02-01 CVE-2023-0599 cve Rapid7 Metasploit Pro versions 4.21.2 and lower suffer from a stored cross site scripting vulnerability, due to a lack of JavaScript request string sanitization. Using this vuln...
N/A 2023-02-01 CVE-2023-22501 cve An authentication vulnerability was discovered in Jira Service Management Server and Data Center which allows an attacker to impersonate another user and gain access to a Jira S...
N/A 2023-02-01 CVE-2023-23469 cve IBM ICP4A - Automation Decision Services 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2 allows web pages to b...
N/A 2023-02-01 CVE-2023-23969 cve In Django 3.2 before 3.2.17, 4.0 before 4.0.9, and 4.1 before 4.1.6, the parsed values of Accept-Language headers are cached in order to avoid repetitive parsing. This leads to ...
N/A 2023-02-01 CVE-2022-46934 cve kkFileView v4.1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the url parameter at /controller/OnlinePreviewController.java.
N/A 2023-02-01 CVE-2023-0619 cve The Kraken.io Image Optimizer plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on its AJAX actions in versions up to, and including, ...
N/A 2023-02-01 CVE-2023-22284 cve ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none.
N/A 2023-02-01 CVE-2023-22287 cve ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none.
N/A 2023-02-01 CVE-2023-23073 cve Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via PO in the purchase component.
N/A 2023-02-01 CVE-2023-23074 cve Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via embedding videos in the language component.
N/A 2023-02-01 CVE-2023-23075 cve Cross Site Scripting (XSS) vulnerability in Zoho Asset Explorer 6.9 via the credential name when creating a new Assets Workstation.
N/A 2023-02-01 CVE-2023-23076 cve OS Command injection vulnerability in Support Center Plus 11 via Executor in Action when creating new schedules.
N/A 2023-02-01 CVE-2023-23077 cve Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 13 via the comment field when adding a new status comment.
N/A 2023-02-01 CVE-2023-23078 cve Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via the comment field when changing the credentials in the Assets.
N/A 2023-02-01 CVE-2022-30904 cve In Bestechnic Bluetooth Mesh SDK (BES2300) V1.0, a buffer overflow vulnerability can be triggered during provisioning, because there is no check for the SegN field of the Transa...
N/A 2023-02-01 CVE-2022-31363 cve Cypress : https://www.infineon.com/ Cypress Bluetooth Mesh SDK BSA0107_05.01.00-BX8-AMESH-08 is affected by: Buffer Overflow. The impact is: execute arbitrary code (remote). The...
N/A 2023-02-01 CVE-2022-31364 cve Cypress : https://www.infineon.com/ Cypress Bluetooth Mesh SDK BSA0107_05.01.00-BX8-AMESH-08 is affected by: Buffer Overflow. The impact is: execute arbitrary code (remote). The...
N/A 2023-02-01 CVE-2022-3083 cve All versions of Landis+Gyr E850 (ZMQ200) are vulnerable to CWE-784: Reliance on Cookies Without Validation and Integrity. The device's web application navigation depends on...
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... Result(s) : 206353