| Page(s) : 1 ... 1055 1056 1057 1058 1059 1060 1061 1062 1063 1064 [1065] 1066 1067 1068 1069 1070 1071 1072 1073 1074 1075 ... | Result(s) : 327136 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.2 | 2025-02-07 | CVE-2024-7425 | cve | The WP ALL Export Pro plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to improper user input validation and san... |
| 9.8 | 2025-02-07 | CVE-2025-1104 | cve | A vulnerability has been found in D-Link DHP-W310AV 1.04 and classified as critical. This vulnerability affects unknown code. The manipulation leads to authentication bypass by ... |
| N/A | 2025-02-07 | CVE-2025-0307 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| 4.3 | 2025-02-07 | CVE-2025-1105 | cve | A vulnerability was found in SiberianCMS 4.20.6. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /app/sae/design/desktop/flat ... |
| N/A | 2025-02-07 | CVE-2025-25069 | cve | A Cross-Protocol Scripting vulnerability is found in Apache Kvrocks. Since Kvrocks didn't detect if "Host:" or "POST" appears in RESP requests, a valid HTTP request can al... |
| N/A | 2025-02-07 | CVE-2025-1107 | cve | Unverified password change vulnerability in Janto, versions prior to r12. This could allow an unauthenticated attacker to change another user's password without knowing the... |
| N/A | 2025-02-07 | CVE-2025-1108 | cve | Insufficient data authenticity verification vulnerability in Janto, versions prior to r12. This allows an unauthenticated attacker to modify the content of emails sent to reset ... |
| N/A | 2025-02-07 | CVE-2024-13352 | cve | The Legull WordPress plugin through 1.2.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could... |
| N/A | 2025-02-07 | CVE-2024-13492 | cve | The Guten Free Options WordPress plugin through 0.9.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting... |
| 4.3 | 2025-02-07 | CVE-2024-13841 | cve | The Builder Shortcode Extras – WordPress Shortcodes Collection to Save You Time plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, ... |
| N/A | 2025-02-07 | CVE-2025-23085 | cve | A memory leak could occur when a remote peer abruptly closes the socket without sending a GOAWAY notification. Additionally, if an invalid header was detected by nghttp2, causin... |
| N/A | 2025-02-07 | CVE-2025-22880 | cve | Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious ... |
| N/A | 2025-02-07 | CVE-2025-1077 | cve | A security vulnerability has been identified in the IBL Software Engineering Visual Weather and derived products (NAMIS, Aero Weather, Satellite Weather). The vulnerability is p... |
| 5.5 | 2025-02-07 | CVE-2025-0302 | cve | in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow. |
| 7.8 | 2025-02-07 | CVE-2025-0303 | cve | in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through buffer overflow. |
| 7.8 | 2025-02-07 | CVE-2025-0304 | cve | in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free. |
| N/A | 2025-02-07 | CVE-2025-25071 | cve | Cross-Site Request Forgery (CSRF) vulnerability in topplugins Vignette Ads allows Stored XSS. This issue affects Vignette Ads: from n/a through 0.2. |
| N/A | 2025-02-07 | CVE-2025-25072 | cve | Cross-Site Request Forgery (CSRF) vulnerability in thunderbax WP Admin Custom Page allows Stored XSS. This issue affects WP Admin Custom Page: from n/a through 1.5.0. |
| N/A | 2025-02-07 | CVE-2025-25073 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vasilis Triantafyllou Easy WP Tiles allows Stored XSS. This issue... |
| N/A | 2025-02-07 | CVE-2025-25074 | cve | Cross-Site Request Forgery (CSRF) vulnerability in Nirmal Kumar Ram WP Social Stream allows Stored XSS. This issue affects WP Social Stream: from n/a through 1.1. |
| Page(s) : 1 ... 1055 1056 1057 1058 1059 1060 1061 1062 1063 1064 [1065] 1066 1067 1068 1069 1070 1071 1072 1073 1074 1075 ... | Result(s) : 327136 |
