| Page(s) : 1 ... 1007 1008 1009 1010 1011 1012 1013 1014 1015 1016 [1017] 1018 1019 1020 1021 1022 1023 1024 1025 1026 1027 ... | Result(s) : 326761 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-02-12 | CVE-2025-26374 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua (users endpoint) in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged)... |
| 8.8 | 2025-02-12 | CVE-2025-26375 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to crea... |
| 6.5 | 2025-02-12 | CVE-2025-26376 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to modi... |
| N/A | 2025-02-12 | CVE-2025-26377 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to remo... |
| 8.8 | 2025-02-12 | CVE-2025-26378 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to rese... |
| 6.5 | 2025-02-12 | CVE-2024-13374 | cve | The WP Table Manager plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on thewptm_getFolders AJAX action in all versions up to, and inc... |
| 7.5 | 2025-02-12 | CVE-2024-13600 | cve | The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and inclu... |
| 4.3 | 2025-02-12 | CVE-2024-13601 | cve | The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and inc... |
| 8.8 | 2025-02-12 | CVE-2024-13714 | cve | The All-Images.ai – IA Image Bank and Custom Image creation plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the '_get_im... |
| 9.8 | 2025-02-12 | CVE-2025-1183 | cve | A vulnerability has been found in CodeZips Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /dashboar... |
| N/A | 2025-02-12 | CVE-2025-1184 | cve | A vulnerability was found in pihome-shc PiHome 1.77 and classified as critical. Affected by this issue is some unknown functionality of the file /ajax.php?Ajax=GetModal_MQTTEdit... |
| N/A | 2025-02-12 | CVE-2025-26520 | cve | Cacti through 1.2.29 allows SQL injection in the template function in host_templates.php via the graph_template parameter. NOTE: this issue exists because of an incomplete fix f... |
| N/A | 2025-02-12 | CVE-2023-49780 | cve | Cross-site scripting vulnerability exists in acmailer CGI ver.4.0.5 and earlier. An arbitrary script may be executed on the web browser of the user who accessed the management p... |
| N/A | 2025-02-12 | CVE-2024-13794 | cve | The WP Ghost (Hide My WP Ghost) – Security & Firewall plugin for WordPress is vulnerable to Login Page Dislcosure in all versions up to, and including, 5.3.02. This is due to th... |
| N/A | 2025-02-12 | CVE-2024-13821 | cve | The WP Booking Calendar plugin for WordPress is vulnerable to Unauthenticated Post-Confirmation Booking Manipulation in all versions up to, and including, 10.10. This is due to ... |
| N/A | 2025-02-12 | CVE-2025-1185 | cve | A vulnerability was found in pihome-shc PiHome 2.0. It has been classified as critical. This affects an unknown part of the file /ajax.php?Ajax=GetModal_Sensor_Graph. The manipu... |
| 9.8 | 2025-02-12 | CVE-2025-1186 | cve | A vulnerability was found in dayrui XunRuiCMS up to 4.6.4. It has been declared as critical. This vulnerability affects unknown code of the file /Control/Api/Api.php. The manipu... |
| N/A | 2025-02-12 | CVE-2024-12315 | cve | The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.3 via the ... |
| 8.8 | 2025-02-12 | CVE-2024-13814 | cve | The The Global Gallery - WordPress Responsive Gallery plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 9.1.5. This is du... |
| 7.8 | 2025-02-12 | CVE-2025-1187 | cve | A vulnerability classified as critical was found in code-projects Police FIR Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the comp... |
| Page(s) : 1 ... 1007 1008 1009 1010 1011 1012 1013 1014 1015 1016 [1017] 1018 1019 1020 1021 1022 1023 1024 1025 1026 1027 ... | Result(s) : 326761 |
