| Page(s) : 1 ... 1025 1026 1027 1028 1029 1030 1031 1032 1033 1034 [1035] 1036 1037 1038 1039 1040 1041 1042 1043 1044 1045 ... | Result(s) : 300771 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-04 | CVE-2023-39943 | cve | In Ashlar-Vellum Cobalt versions prior to v12 SP2 Build (1204.200), the affected application lacks proper validation of user-supplied data when parsing XE files. This could lead... |
| N/A | 2025-02-04 | CVE-2023-40222 | cve | In Ashlar-Vellum Cobalt versions prior to v12 SP2 Build (1204.200), the affected application lacks proper validation of user-supplied data when parsing CO files. This could lead... |
| N/A | 2025-02-04 | CVE-2024-11467 | cve | Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to a logic flaw. Successful exploitation of this issue may allow attackers with us... |
| N/A | 2025-02-04 | CVE-2024-11468 | cve | Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to a flaw in the installation process. Successful exploitation of this issue may a... |
| N/A | 2025-02-04 | CVE-2024-48445 | cve | An issue in compop.ca ONLINE MALL v.3.5.3 allows a remote attacker to execute arbitrary code via the rid, tid, et, and ts parameters. |
| N/A | 2025-02-04 | CVE-2024-48019 | cve | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or Directories Accessible to External Parties vulnerability in Apache Doris. Ap... |
| N/A | 2025-02-04 | CVE-2025-0444 | cve | Use after free in Skia in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security sever... |
| N/A | 2025-02-04 | CVE-2025-0445 | cve | Use after free in V8 in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severit... |
| N/A | 2025-02-04 | CVE-2025-0451 | cve | Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perfor... |
| 6.5 | 2025-02-04 | CVE-2025-24373 | cve | woocommerce-pdf-invoices-packing-slips is an extension which allows users to create, print & automatically email PDF invoices & packing slips for WooCommerce orders. This vulner... |
| N/A | 2025-02-04 | CVE-2025-24971 | cve | DumpDrop is a stupid simple file upload application that provides an interface for dragging and dropping files. An OS Command Injection vulnerability was discovered in the DumbD... |
| 8.8 | 2025-02-04 | CVE-2025-25039 | cve | A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager (CPPM) allows remote authenticated users to run arbitrary commands on the ... |
| N/A | 2025-02-04 | CVE-2025-0509 | cve | A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s (Ed)DSA signing checks. |
| N/A | 2025-02-04 | CVE-2025-0630 | cve | Multiple Western Telematic (WTI) products contain a web interface that is vulnerable to a local file inclusion attack (LFI), where any authenticated user has privileged access t... |
| N/A | 2025-02-04 | CVE-2025-0960 | cve | AutomationDirect C-more EA9 HMI contains a function with bounds checks that can be skipped, which could result in an attacker abusing the function to cause a denial-of-service c... |
| N/A | 2025-02-04 | CVE-2025-24963 | cve | Vitest is a testing framework powered by Vite. The `__screenshot-error` handler on the browser mode HTTP server that responds any file on the file system. Especially if the serv... |
| N/A | 2025-02-04 | CVE-2025-24964 | cve | Vitest is a testing framework powered by Vite. Affected versions are subject to arbitrary remote Code Execution when accessing a malicious website while Vitest API server is lis... |
| 5.4 | 2025-02-04 | CVE-2025-24966 | cve | reNgine is an automated reconnaissance framework for web applications. HTML Injection occurs when an application improperly validates or sanitizes user inputs, allowing attacker... |
| 5.4 | 2025-02-04 | CVE-2025-24967 | cve | reNgine is an automated reconnaissance framework for web applications. A stored cross-site scripting (XSS) vulnerability exists in the admin panel's user management functio... |
| 8.8 | 2025-02-04 | CVE-2025-24968 | cve | reNgine is an automated reconnaissance framework for web applications. An unrestricted project deletion vulnerability allows attackers with specific roles, such as `penetration_... |
| Page(s) : 1 ... 1025 1026 1027 1028 1029 1030 1031 1032 1033 1034 [1035] 1036 1037 1038 1039 1040 1041 1042 1043 1044 1045 ... | Result(s) : 300771 |
