| Page(s) : 1 ... 1000 1001 1002 1003 1004 1005 1006 1007 1008 1009 [1010] 1011 1012 1013 1014 1015 1016 1017 1018 1019 1020 ... | Result(s) : 300703 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.1 | 2025-02-11 | CVE-2025-26493 | cve | In JetBrains TeamCity before 2024.12.2 several DOM-based XSS were possible on the Code Inspection Report tab |
| 3.1 | 2025-02-10 | CVE-2025-1150 | cve | A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfd_malloc of the file libbfd.c of the component ld.... |
| 3.1 | 2025-02-10 | CVE-2025-1151 | cve | A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the file xmemdup.c of the component ld. The manipula... |
| 5.4 | 2025-02-10 | CVE-2024-48170 | cve | PHPGurukul Small CRM 3.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload injected into the name in the profile.php. |
| N/A | 2025-02-10 | CVE-2024-54954 | cve | OneBlog v2.3.6 was discovered to contain a template injection vulnerability via the template management department. |
| N/A | 2025-02-10 | CVE-2024-57407 | cve | An arbitrary file upload vulnerability in the component /userPicture of Timo v2.0.3 allows attackers to execute arbitrary code via uploading a crafted file. |
| N/A | 2025-02-10 | CVE-2024-57408 | cve | An arbitrary file upload vulnerability in the component /comm/upload of cool-admin-java v1.0 allows attackers to execute arbitrary code via uploading a crafted file. |
| N/A | 2025-02-10 | CVE-2024-57409 | cve | A stored cross-site scripting (XSS) vulnerability in the Parameter List module of cool-admin-java v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a ... |
| 3.7 | 2025-02-10 | CVE-2025-1152 | cve | A vulnerability classified as problematic has been found in GNU Binutils 2.43. Affected is the function xstrdup of the file xstrdup.c of the component ld. The manipulation leads... |
| N/A | 2025-02-10 | CVE-2025-25188 | cve | Hickory DNS is a Rust based DNS client, server, and resolver. A vulnerability present starting in version 0.8.0 and prior to versions 0.24.3 and 0.25.0-alpha.5 impacts Hickory D... |
| N/A | 2025-02-10 | CVE-2024-10649 | cve | wandb/openui latest commit c945bb859979659add5f490a874140ad17c56a5d contains a vulnerability where unauthenticated endpoints allow file uploads and downloads from an AWS S3 buck... |
| 6.1 | 2025-02-10 | CVE-2024-13010 | cve | The WP Foodbakery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 4.7 due to insufficient input sanitization and output es... |
| 9.8 | 2025-02-10 | CVE-2024-13011 | cve | The WP Foodbakery plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'upload_publisher_profile_image' functio... |
| N/A | 2025-02-10 | CVE-2024-13059 | cve | A vulnerability in mintplex-labs/anything-llm prior to version 1.3.1 allows for path traversal due to improper handling of non-ASCII filenames in the multer library. This vulner... |
| 8.8 | 2025-02-10 | CVE-2024-27859 | cve | The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, tvOS 17.4, watchOS 10.4, visionOS 1.1, macOS Sonoma 14.4. Processing web ... |
| N/A | 2025-02-10 | CVE-2024-42512 | cve | Vulnerability in the OPC UA .NET Standard Stack before 1.5.374.158 allows an unauthorized attacker to bypass application authentication when the deprecated Basic128Rsa15 securit... |
| N/A | 2025-02-10 | CVE-2024-42513 | cve | Vulnerability in the OPC UA .NET Standard Stack before 1.5.374.158 allows an unauthorized attacker to bypass application authentication when using HTTPS endpoints. |
| N/A | 2025-02-10 | CVE-2024-46429 | cve | A hardcoded credentials vulnerability in Tenda W18E V16.01.0.8(1625) allows unauthenticated remote attackers to access the web management portal using a default guest account wi... |
| N/A | 2025-02-10 | CVE-2024-46430 | cve | Tenda W18E V16.01.0.8(1625) is vulnerable to Incorrect Access Control. Unauthorized password change via the web management portal allows an unauthenticated remote attacker to ch... |
| N/A | 2025-02-10 | CVE-2024-46431 | cve | Tenda W18E V16.01.0.8(1625) is vulnerable to Buffer Overflow. An attacker with access to the web management portal can exploit this vulnerability by sending specially crafted da... |
| Page(s) : 1 ... 1000 1001 1002 1003 1004 1005 1006 1007 1008 1009 [1010] 1011 1012 1013 1014 1015 1016 1017 1018 1019 1020 ... | Result(s) : 300703 |
