| Page(s) : 1 ... 1072 1073 1074 1075 1076 1077 1078 1079 1080 1081 [1082] 1083 1084 1085 1086 1087 1088 1089 1090 1091 1092 ... | Result(s) : 327161 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-04 | CVE-2025-24971 | cve | DumpDrop is a stupid simple file upload application that provides an interface for dragging and dropping files. An OS Command Injection vulnerability was discovered in the DumbD... |
| 8.8 | 2025-02-04 | CVE-2025-25039 | cve | A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager (CPPM) allows remote authenticated users to run arbitrary commands on the ... |
| N/A | 2025-02-04 | CVE-2025-0509 | cve | A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s (Ed)DSA signing checks. |
| N/A | 2025-02-04 | CVE-2025-0630 | cve | Multiple Western Telematic (WTI) products contain a web interface that is vulnerable to a local file inclusion attack (LFI), where any authenticated user has privileged access t... |
| N/A | 2025-02-04 | CVE-2025-0960 | cve | AutomationDirect C-more EA9 HMI contains a function with bounds checks that can be skipped, which could result in an attacker abusing the function to cause a denial-of-service c... |
| N/A | 2025-02-04 | CVE-2025-24963 | cve | Vitest is a testing framework powered by Vite. The `__screenshot-error` handler on the browser mode HTTP server that responds any file on the file system. Especially if the serv... |
| N/A | 2025-02-04 | CVE-2025-24964 | cve | Vitest is a testing framework powered by Vite. Affected versions are subject to arbitrary remote Code Execution when accessing a malicious website while Vitest API server is lis... |
| 5.4 | 2025-02-04 | CVE-2025-24966 | cve | reNgine is an automated reconnaissance framework for web applications. HTML Injection occurs when an application improperly validates or sanitizes user inputs, allowing attacker... |
| 5.4 | 2025-02-04 | CVE-2025-24967 | cve | reNgine is an automated reconnaissance framework for web applications. A stored cross-site scripting (XSS) vulnerability exists in the admin panel's user management functio... |
| 8.8 | 2025-02-04 | CVE-2025-24968 | cve | reNgine is an automated reconnaissance framework for web applications. An unrestricted project deletion vulnerability allows attackers with specific roles, such as `penetration_... |
| N/A | 2025-02-04 | CVE-2024-35138 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unaut... |
| 6.1 | 2025-02-04 | CVE-2024-40700 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed ar... |
| 5.9 | 2025-02-04 | CVE-2024-43187 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffe... |
| 5 | 2025-02-04 | CVE-2024-45657 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a local privileged user to perform unauthorized actions due to incorrect permissions assignm... |
| 2.7 | 2025-02-04 | CVE-2024-45658 | cve | IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote attacker to obtain sensitive information when a detailed technical error message is... |
| N/A | 2025-02-04 | CVE-2024-55948 | cve | Discourse is an open source platform for community discussion. In affected versions an attacker can make craft an XHR request to poison the anonymous cache (for example, the cac... |
| N/A | 2025-02-04 | CVE-2024-56197 | cve | Discourse is an open source platform for community discussion. PM titles and metadata can be read by other users when the "PM tags allowed for groups" option is enabled, the oth... |
| N/A | 2025-02-04 | CVE-2024-56328 | cve | Discourse is an open source platform for community discussion. An attacker can execute arbitrary JavaScript on users' browsers by posting a maliciously crafted onebox url. ... |
| N/A | 2025-02-04 | CVE-2025-22601 | cve | Discourse is an open source platform for community discussion. In affected versions an attacker can trick a target user to make changes to their own username via carefully craft... |
| N/A | 2025-02-04 | CVE-2025-22602 | cve | Discourse is an open source platform for community discussion. In affected versions an attacker can execute arbitrary JavaScript on users' browsers by posting a malicious v... |
| Page(s) : 1 ... 1072 1073 1074 1075 1076 1077 1078 1079 1080 1081 [1082] 1083 1084 1085 1086 1087 1088 1089 1090 1091 1092 ... | Result(s) : 327161 |
