| Page(s) : 1 ... 995 996 997 998 999 1000 1001 1002 1003 1004 [1005] 1006 1007 1008 1009 1010 1011 1012 1013 1014 1015 ... | Result(s) : 326739 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-02-13 | CVE-2024-13639 | cve | The Read More & Accordion plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the expmDeleteData() function in ... |
| N/A | 2025-02-13 | CVE-2024-3303 | cve | An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.6.5, starting from 17.7 prior to 17.7.4, and starting from 17.8 prior to 17.8.2, which... |
| N/A | 2025-02-13 | CVE-2024-46910 | cve | An authenticated user can perform XSS and potentially impersonate another user. This issue affects Apache Atlas versions 2.3.0 and earlier. Users are recommended to upgrade to... |
| 7.5 | 2025-02-13 | CVE-2024-13606 | cve | The JS Help Desk – The Ultimate Help Desk & Support Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.8.8 via t... |
| 6.1 | 2025-02-13 | CVE-2024-13867 | cve | The Listivo - Classified Ads WordPress Theme theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the 's' parameter in all versions up to, and inclu... |
| N/A | 2025-02-13 | CVE-2024-7102 | cve | An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.5.0 which allows an attacker to trigger a pipeline as another user under certain ci... |
| N/A | 2025-02-13 | CVE-2024-8266 | cve | An issue was discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.6.0, which allows an attacker with maintainer role to trigger a pipeline as project... |
| N/A | 2025-02-13 | CVE-2025-25286 | cve | Crayfish is a collection of Islandora 8 microservices, one of which, Homarus, provides FFmpeg as a microservice. Prior to Crayfish version 4.1.0, remote code execution may be po... |
| 5.4 | 2025-02-13 | CVE-2024-13644 | cve | The DethemeKit For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's De Gallery widget in all versions up to, and including, 2.1.... |
| N/A | 2025-02-13 | CVE-2025-0896 | cve | Orthanc server prior to version 1.5.8 does not enable basic authentication by default when remote access is enabled. This could result in unauthorized access by an attacker. |
| N/A | 2025-02-13 | CVE-2025-1198 | cve | An issue discovered in GitLab CE/EE affecting all versions from 16.11 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2 meant that long-lived connections in Action... |
| 9.8 | 2025-02-13 | CVE-2024-10763 | cve | The Campress theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.35 via the 'campress_woocommerce_get_ajax_products' func... |
| 5.4 | 2025-02-13 | CVE-2024-13227 | cve | The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Rank Math API in all versions u... |
| 4.3 | 2025-02-13 | CVE-2024-13229 | cve | The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the update_metadat... |
| 9.8 | 2025-02-13 | CVE-2024-13770 | cve | The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.2.4 via des... |
| 5.4 | 2025-02-13 | CVE-2025-0837 | cve | The Puzzles theme for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 4.2.4 due to insufficient input sanitization and ou... |
| N/A | 2025-02-12 | CVE-2024-34520 | cve | An authorization bypass vulnerability exists in the Mavenir SCE Application Provisioning Portal, version PORTAL-LBS-R_1_0_24_0, which allows an authenticated 'guest' u... |
| N/A | 2025-02-12 | CVE-2024-34521 | cve | A directory traversal vulnerability exists in the Mavenir SCE Application Provisioning Portal, version PORTAL-LBS-R_1_0_24_0, which allows an administrative user to access syste... |
| N/A | 2025-02-12 | CVE-2024-51376 | cve | Directory Traversal vulnerability in yeqifu carRental v.1.0 allows a remote attacker to obtain sensitive information via the file/downloadFile.action?path= component. |
| N/A | 2025-02-12 | CVE-2025-0937 | cve | Nomad Community and Nomad Enterprise ("Nomad") event stream configured with a wildcard namespace can bypass the ACL Policy allowing reads on other namespaces. |
| Page(s) : 1 ... 995 996 997 998 999 1000 1001 1002 1003 1004 [1005] 1006 1007 1008 1009 1010 1011 1012 1013 1014 1015 ... | Result(s) : 326739 |
