| Page(s) : 1 ... 1003 1004 1005 1006 1007 1008 1009 1010 1011 1012 [1013] 1014 1015 1016 1017 1018 1019 1020 1021 1022 1023 ... | Result(s) : 43591 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2019-08-23 | CVE-2019-10750 | cve | deeply is vulnerable to Prototype Pollution in versions before 3.1.0. The function assign-deep could be tricked into adding or modifying properties of Object.prototype using usi... |
| 9.8 | 2019-08-23 | CVE-2019-15494 | cve | openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21. |
| 9.8 | 2019-08-23 | CVE-2019-15536 | cve | The Acclaim block plugin before 2019-06-26 for Moodle allows SQL Injection via delete_records. |
| 9.8 | 2019-08-23 | CVE-2019-15490 | cve | openITCOCKPIT before 3.7.1 allows code injection, aka RVID 1-445b21. |
| 9.8 | 2019-08-22 | CVE-2018-20987 | cve | The newsletters-lite plugin before 4.6.8.6 for WordPress has PHP object injection. |
| 9.8 | 2019-08-22 | CVE-2014-10387 | cve | The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has SQL injection. |
| 9.8 | 2019-08-22 | CVE-2019-15319 | cve | The option-tree plugin before 2.7.0 for WordPress has Object Injection by leveraging a valid nonce. |
| 9.8 | 2019-08-22 | CVE-2015-9334 | cve | The email-newsletter plugin through 20.15 for WordPress has SQL injection. |
| 9.1 | 2019-08-22 | CVE-2017-18586 | cve | The insert-pages plugin before 3.2.4 for WordPress has directory traversal via custom template paths. |
| 9.8 | 2019-08-22 | CVE-2019-15321 | cve | The option-tree plugin before 2.7.3 for WordPress has Object Injection because serialized classes are mishandled. |
| 9.8 | 2019-08-22 | CVE-2019-11031 | cve | Mirasys VMS before V7.6.1 and 8.x before V8.3.2 mishandles the auto-update feature of IDVRUpdateService2 in DVRServer.exe. An attacker can upload files with a Setup-Files action... |
| 9.8 | 2019-08-22 | CVE-2018-20985 | cve | The wp-payeezy-pay plugin before 2.98 for WordPress has local file inclusion in pay.php, donate.php, donate-rec, and pay-rec. |
| 9.1 | 2019-08-22 | CVE-2014-10390 | cve | The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has directory traversal. |
| 9.8 | 2019-08-22 | CVE-2019-15322 | cve | The shortcode-factory plugin before 2.8 for WordPress has Local File Inclusion. |
| 9.8 | 2019-08-22 | CVE-2019-15320 | cve | The option-tree plugin before 2.7.3 for WordPress has Object Injection because the + character is mishandled. |
| 9.8 | 2019-08-22 | CVE-2013-7483 | cve | The slidedeck2 plugin before 2.3.5 for WordPress has file inclusion. |
| 9.8 | 2019-08-22 | CVE-2019-11030 | cve | Mirasys VMS before V7.6.1 and 8.x before V8.3.2 mishandles the Mirasys.Common.Utils.Security.DataCrypt method in Common.dll in AuditTrailService in SMServer.exe. This method tri... |
| 9.8 | 2019-08-22 | CVE-2014-10389 | cve | The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has incorrect authentication. |
| 9.8 | 2019-08-22 | CVE-2018-20984 | cve | The patreon-connect plugin before 1.2.2 for WordPress has Object Injection. |
| 9.8 | 2019-08-22 | CVE-2016-10930 | cve | The wp-support-plus-responsive-ticket-system plugin before 7.1.0 for WordPress has insecure direct object reference via a ticket number. |
| Page(s) : 1 ... 1003 1004 1005 1006 1007 1008 1009 1010 1011 1012 [1013] 1014 1015 1016 1017 1018 1019 1020 1021 1022 1023 ... | Result(s) : 43591 |
