| Page(s) : 1 ... 1031 1032 1033 1034 1035 1036 1037 1038 1039 1040 [1041] 1042 1043 1044 1045 1046 1047 1048 1049 1050 1051 ... | Result(s) : 300803 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-04 | CVE-2024-13326 | cve | The iBuildApp WordPress plugin through 0.2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which co... |
| N/A | 2025-02-04 | CVE-2024-13327 | cve | The Musicbox WordPress plugin through 2.0.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which cou... |
| N/A | 2025-02-04 | CVE-2024-13328 | cve | The Giga Messenger WordPress plugin through 2.3.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting wh... |
| N/A | 2025-02-04 | CVE-2024-13329 | cve | The Solidres WordPress plugin through 0.9.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which co... |
| N/A | 2025-02-04 | CVE-2024-13330 | cve | The JustRows free WordPress plugin through 0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which ... |
| N/A | 2025-02-04 | CVE-2024-13331 | cve | The WP Dream Carousel WordPress plugin through 1.0.1b does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting... |
| N/A | 2025-02-04 | CVE-2024-13332 | cve | The TransFinanz WordPress plugin through 1.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which ... |
| N/A | 2025-02-04 | CVE-2025-0368 | cve | The Banner Garden Plugin for WordPress plugin through 0.1.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scr... |
| N/A | 2025-02-04 | CVE-2025-0466 | cve | The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak sensei_email and sensei_message Inf... |
| 5.4 | 2025-02-04 | CVE-2024-12597 | cve | The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'block_css' and 'inner_css' parameters ... |
| 4.3 | 2025-02-04 | CVE-2024-13607 | cve | The JS Help Desk – The Ultimate Help Desk & Support Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.8.8 via... |
| N/A | 2025-02-04 | CVE-2024-10237 | cve | There is a vulnerability in the BMC firmware image authentication design at Supermicro MBD-X12DPG-OA6 . An attacker can modify the firmware to bypass BMC inspection and bypa... |
| N/A | 2025-02-04 | CVE-2024-10238 | cve | A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6. An attacker can upload a specially crafted image that will cause a stack over... |
| N/A | 2025-02-04 | CVE-2024-10239 | cve | A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6 . An attacker with administrator privileges can upload a specially crafted image,... |
| 4.3 | 2025-02-04 | CVE-2024-12046 | cve | The Medical Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.6.2 via the 'namedical_elemen... |
| 4.3 | 2025-02-04 | CVE-2024-13514 | cve | The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.5 via the 'bsb-slider'... |
| 7.8 | 2025-02-04 | CVE-2025-20881 | cve | Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with pr... |
| 7.8 | 2025-02-04 | CVE-2025-20882 | cve | Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege.... |
| 4.6 | 2025-02-04 | CVE-2025-20883 | cve | Improper access control in SoundPicker prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles. |
| 4.6 | 2025-02-04 | CVE-2025-20884 | cve | Improper access control in Samsung Message prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles. |
| Page(s) : 1 ... 1031 1032 1033 1034 1035 1036 1037 1038 1039 1040 [1041] 1042 1043 1044 1045 1046 1047 1048 1049 1050 1051 ... | Result(s) : 300803 |
