| Page(s) : 1 ... 96 97 98 99 100 101 102 103 104 105 [106] 107 108 109 110 111 112 113 114 115 116 ... | Result(s) : 114980 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.3 | 2025-03-14 | CVE-2025-1285 | cve | The Resido - Real Estate WordPress Theme theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the delete_api_key and save_api_key AJAX a... |
| 4.3 | 2025-03-14 | CVE-2025-1528 | cve | The Search & Filter Pro plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_meta_values' function in all ve... |
| 6.1 | 2025-03-14 | CVE-2025-2166 | cve | The CM FAQ – Simplify support with an intuitive FAQ management tool plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg with... |
| 6.5 | 2025-03-14 | CVE-2024-13407 | cve | The Omnipress plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.4 via the megamenu block due to insufficient restrictions on w... |
| 5.4 | 2025-03-14 | CVE-2025-1526 | cve | The DethemeKit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the De Product Display Widget (countdown feature) in all versions up to, and i... |
| 5.3 | 2025-03-14 | CVE-2025-1507 | cve | The ShareThis Dashboard for Google Analytics plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handle_actions() fu... |
| 6.5 | 2025-03-13 | CVE-2025-24974 | cve | DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.6, authenticated users can read and deserialize arbitrary files through the b... |
| 6.5 | 2025-03-13 | CVE-2025-27103 | cve | DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.6, a bypass for the patch for CVE-2024-55953 allows authenticated users to re... |
| 6.4 | 2025-03-13 | CVE-2025-1503 | cve | The WP Recipe Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Roundup Recipe Name field in all versions up to, and including, 9.8.0 due to insuff... |
| 6.1 | 2025-03-13 | CVE-2025-1561 | cve | The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' parameter in all versions up to, and including,... |
| 4.3 | 2025-03-13 | CVE-2025-2104 | cve | The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to unauthorized post publication due to insufficient validation on the pagelayer_s... |
| 5.4 | 2025-03-13 | CVE-2025-1785 | cve | The Download Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.08 via the 'wpdm_newfile' action. This makes i... |
| 4.3 | 2025-03-13 | CVE-2024-13703 | cve | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the vcita_ajax_toggle_ae() func... |
| 6.4 | 2025-03-13 | CVE-2025-1559 | cve | The CC-IMG-Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'img' shortcode in all versions up to, and including, 1.1.... |
| 5.3 | 2025-03-13 | CVE-2024-13887 | cve | The Business Directory Plugin – Easy Listing Directories for WordPress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and includin... |
| 4.9 | 2025-03-13 | CVE-2025-2250 | cve | The WordPress Report Brute Force Attacks and Login Protection ReportAttacks Plugins plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter in ... |
| 6.7 | 2025-03-12 | CVE-2025-20143 | cve | A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass the Secure Boot functionality and load u... |
| 4 | 2025-03-12 | CVE-2025-20144 | cve | A vulnerability in the hybrid access control list (ACL) processing of IPv4 packets in Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configure... |
| 5.8 | 2025-03-12 | CVE-2025-20145 | cve | A vulnerability in the access control list (ACL) processing in the egress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configur... |
| 6.7 | 2025-03-12 | CVE-2025-20177 | cve | A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker to bypass Cisco IOS XR image signature verification and load unverified... |
| Page(s) : 1 ... 96 97 98 99 100 101 102 103 104 105 [106] 107 108 109 110 111 112 113 114 115 116 ... | Result(s) : 114980 |
