| Page(s) : 1 ... 1022 1023 1024 1025 1026 1027 1028 1029 1030 1031 [1032] 1033 1034 1035 1036 1037 1038 1039 1040 1041 1042 ... | Result(s) : 327069 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-12 | CVE-2025-26366 | cve | A CWE-306 "Missing Authentication for Critical Function" in maxprofile/setup/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote a... |
| 4.3 | 2025-02-12 | CVE-2025-26367 | cve | A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker t... |
| 8.1 | 2025-02-12 | CVE-2025-26368 | cve | A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker t... |
| 8.8 | 2025-02-12 | CVE-2025-26369 | cve | A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker t... |
| N/A | 2025-02-12 | CVE-2025-26370 | cve | A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker t... |
| 8.8 | 2025-02-12 | CVE-2025-26371 | cve | A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker t... |
| 8.1 | 2025-02-12 | CVE-2025-26372 | cve | A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker t... |
| N/A | 2025-02-12 | CVE-2025-26373 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua (user endpoint) in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) ... |
| 4.3 | 2025-02-12 | CVE-2025-26374 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua (users endpoint) in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged)... |
| 8.8 | 2025-02-12 | CVE-2025-26375 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to crea... |
| 6.5 | 2025-02-12 | CVE-2025-26376 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to modi... |
| N/A | 2025-02-12 | CVE-2025-26377 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to remo... |
| 8.8 | 2025-02-12 | CVE-2025-26378 | cve | A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to rese... |
| 6.5 | 2025-02-12 | CVE-2024-13374 | cve | The WP Table Manager plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on thewptm_getFolders AJAX action in all versions up to, and inc... |
| 7.5 | 2025-02-12 | CVE-2024-13600 | cve | The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and inclu... |
| 4.3 | 2025-02-12 | CVE-2024-13601 | cve | The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and inc... |
| 8.8 | 2025-02-12 | CVE-2024-13714 | cve | The All-Images.ai – IA Image Bank and Custom Image creation plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the '_get_im... |
| 9.8 | 2025-02-12 | CVE-2025-1183 | cve | A vulnerability has been found in CodeZips Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /dashboar... |
| N/A | 2025-02-12 | CVE-2025-1184 | cve | A vulnerability was found in pihome-shc PiHome 1.77 and classified as critical. Affected by this issue is some unknown functionality of the file /ajax.php?Ajax=GetModal_MQTTEdit... |
| N/A | 2025-02-12 | CVE-2025-26520 | cve | Cacti through 1.2.29 allows SQL injection in the template function in host_templates.php via the graph_template parameter. NOTE: this issue exists because of an incomplete fix f... |
| Page(s) : 1 ... 1022 1023 1024 1025 1026 1027 1028 1029 1030 1031 [1032] 1033 1034 1035 1036 1037 1038 1039 1040 1041 1042 ... | Result(s) : 327069 |
