| Page(s) : 1 ... 1078 1079 1080 1081 1082 1083 1084 1085 1086 1087 [1088] 1089 1090 1091 1092 1093 1094 1095 1096 1097 1098 ... | Result(s) : 301176 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-30 | CVE-2024-12708 | cve | The Bulk Me Now! WordPress plugin through 2.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is emb... |
| N/A | 2025-01-30 | CVE-2024-12709 | cve | The Bulk Me Now! WordPress plugin through 2.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF att... |
| 6.4 | 2025-01-30 | CVE-2024-12921 | cve | The EthereumICO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ethereum-ico shortcode in all versions up to, and including, 2.4.6 due to... |
| 5.3 | 2025-01-30 | CVE-2024-13457 | cve | The Event Tickets and Registration plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.18.1 via the tc-order-id parame... |
| 5.4 | 2025-01-30 | CVE-2024-13642 | cve | The Stratum – Elementor Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image Hotspot widget in all versions up to, and including... |
| 5.4 | 2025-01-30 | CVE-2024-13470 | cve | The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode in all versions ... |
| 7.5 | 2025-01-30 | CVE-2024-13694 | cve | The WooCommerce Wishlist (High customization, fast setup,Free Elementor Wishlist, most features) plugin for WordPress is vulnerable to Insecure Direct Object Reference in all ve... |
| 5.4 | 2025-01-30 | CVE-2024-13732 | cve | The Responsive Blocks – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘section_tag’ parameter in all versions up to, and i... |
| 6.5 | 2025-01-30 | CVE-2024-13758 | cve | The CP Contact Form with PayPal plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.52. This is due to missing or incorrec... |
| N/A | 2025-01-30 | CVE-2025-0834 | cve | Privilege escalation vulnerability has been found in Wondershare Dr.Fone version 13.5.21. This vulnerability could allow an attacker to escalate privileges by replacing the bina... |
| 6.1 | 2025-01-30 | CVE-2025-0860 | cve | The VR-Frases (collect & share quotes) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via several parameters in all versions up to, and including, 3.0.1 du... |
| 7.2 | 2025-01-30 | CVE-2025-0861 | cve | The VR-Frases (collect & share quotes) plugin for WordPress is vulnerable to SQL Injection via several parameters in all versions up to, and including, 3.0.1 due to insufficient... |
| 7.8 | 2025-01-30 | CVE-2025-21107 | cve | Dell NetWorker, version(s) prior to 19.11.0.3, all versions of 19.10 & prior versions contain(s) an Unquoted Search Path or Element vulnerability. A low privileged attacker with... |
| N/A | 2025-01-30 | CVE-2025-23007 | cve | A vulnerability in the NetExtender Windows client log export function allows unauthorized access to sensitive Windows system files, potentially leading to privilege escalation. |
| 9.8 | 2025-01-30 | CVE-2025-0846 | cve | A vulnerability was found in 1000 Projects Employee Task Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/AdminLogin.ph... |
| 9.8 | 2025-01-30 | CVE-2025-0847 | cve | A vulnerability was found in 1000 Projects Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /index.php ... |
| 9.8 | 2025-01-30 | CVE-2025-0848 | cve | A vulnerability was found in Tenda A18 up to 15.13.07.09. It has been rated as critical. This issue affects the function SetCmdlineRun of the file /goform/SetCmdlineRun of the c... |
| 8.1 | 2025-01-30 | CVE-2025-0849 | cve | A vulnerability classified as critical has been found in CampCodes School Management Software 1.0. Affected is an unknown function of the file /edit-staff/ of the component Staf... |
| N/A | 2025-01-30 | CVE-2025-0373 | cve | On 64-bit systems, the implementation of VOP_VPTOFH() in the cd9660, tarfs and ext2fs filesystems overflows the destination FID buffer by 4 bytes, a stack buffer overflow. A NF... |
| N/A | 2025-01-30 | CVE-2025-0374 | cve | When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode ... |
| Page(s) : 1 ... 1078 1079 1080 1081 1082 1083 1084 1085 1086 1087 [1088] 1089 1090 1091 1092 1093 1094 1095 1096 1097 1098 ... | Result(s) : 301176 |
