| Page(s) : 1 ... 1026 1027 1028 1029 1030 1031 1032 1033 1034 1035 [1036] 1037 1038 1039 1040 1041 1042 1043 1044 1045 1046 ... | Result(s) : 300771 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-04 | CVE-2024-35138 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unaut... |
| 6.1 | 2025-02-04 | CVE-2024-40700 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed ar... |
| 5.9 | 2025-02-04 | CVE-2024-43187 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffe... |
| 5 | 2025-02-04 | CVE-2024-45657 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a local privileged user to perform unauthorized actions due to incorrect permissions assignm... |
| 2.7 | 2025-02-04 | CVE-2024-45658 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote attacker to obtain sensitive information when a detailed technical error message is... |
| N/A | 2025-02-04 | CVE-2024-55948 | cve | Discourse is an open source platform for community discussion. In affected versions an attacker can make craft an XHR request to poison the anonymous cache (for example, the cac... |
| N/A | 2025-02-04 | CVE-2024-56197 | cve | Discourse is an open source platform for community discussion. PM titles and metadata can be read by other users when the "PM tags allowed for groups" option is enabled, the oth... |
| N/A | 2025-02-04 | CVE-2024-56328 | cve | Discourse is an open source platform for community discussion. An attacker can execute arbitrary JavaScript on users' browsers by posting a maliciously crafted onebox url. ... |
| N/A | 2025-02-04 | CVE-2025-22601 | cve | Discourse is an open source platform for community discussion. In affected versions an attacker can trick a target user to make changes to their own username via carefully craft... |
| N/A | 2025-02-04 | CVE-2025-22602 | cve | Discourse is an open source platform for community discussion. In affected versions an attacker can execute arbitrary JavaScript on users' browsers by posting a malicious v... |
| N/A | 2025-02-04 | CVE-2025-23023 | cve | Discourse is an open source platform for community discussion. In affected versions an attacker can carefully craft a request with the right request headers to poison the anonym... |
| N/A | 2025-02-04 | CVE-2024-13722 | cve | The "NagVis" component within Checkmk is vulnerable to reflected cross-site scripting. An attacker can craft a malicious link that will execute arbitrary JavaScript in the conte... |
| N/A | 2025-02-04 | CVE-2024-13723 | cve | The "NagVis" component within Checkmk is vulnerable to remote code execution. An authenticated attacker with administrative level privileges is able to upload a malicious PHP fi... |
| N/A | 2025-02-04 | CVE-2024-53266 | cve | Discourse is an open source platform for community discussion. In affected versions with some combinations of plugins, and with CSP disabled, activity streams in the user's... |
| N/A | 2025-02-04 | CVE-2024-53851 | cve | Discourse is an open source platform for community discussion. In affected versions the endpoint for generating inline oneboxes for URLs wasn't enforcing limits on the numb... |
| N/A | 2025-02-04 | CVE-2024-53994 | cve | Discourse is an open source platform for community discussion. In affected versions users who disable chat in preferences could still be reachable in some cases. This problem ha... |
| N/A | 2025-02-04 | CVE-2024-8125 | cve | Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management (Extended ECM) allows Parameter Injection. A bad actor with the required OpenText ... |
| N/A | 2025-02-04 | CVE-2024-23690 | cve | The end-of-life Netgear FVS336Gv2 and FVS336Gv3 are affected by a command injection vulnerability in the Telnet interface. An authenticated and remote attacker can execute arbit... |
| N/A | 2025-02-04 | CVE-2024-9643 | cve | The Four-Faith F3x36 router using firmware v2.0.0 is vulnerable to authentication bypass due to hard-coded credentials in the administrative web server. An attacker with knowled... |
| N/A | 2025-02-04 | CVE-2024-9644 | cve | The Four-Faith F3x36 router using firmware v2.0.0 is vulnerable to an authentication bypass vulnerability in the administrative web server. Authentication is not enforced on so... |
| Page(s) : 1 ... 1026 1027 1028 1029 1030 1031 1032 1033 1034 1035 [1036] 1037 1038 1039 1040 1041 1042 1043 1044 1045 1046 ... | Result(s) : 300771 |
