Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 1078 1079 1080 1081 1082 1083 1084 1085 1086 1087 [1088] 1089 1090 1091 1092 1093 1094 1095 1096 1097 1098 ... Result(s) : 301176

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
N/A 2025-01-30 CVE-2024-12708 cve The Bulk Me Now! WordPress plugin through 2.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is emb...
N/A 2025-01-30 CVE-2024-12709 cve The Bulk Me Now! WordPress plugin through 2.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF att...
6.4 2025-01-30 CVE-2024-12921 cve The EthereumICO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ethereum-ico shortcode in all versions up to, and including, 2.4.6 due to...
5.3 2025-01-30 CVE-2024-13457 cve The Event Tickets and Registration plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.18.1 via the tc-order-id parame...
5.4 2025-01-30 CVE-2024-13642 cve The Stratum – Elementor Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image Hotspot widget in all versions up to, and including...
5.4 2025-01-30 CVE-2024-13470 cve The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode in all versions ...
7.5 2025-01-30 CVE-2024-13694 cve The WooCommerce Wishlist (High customization, fast setup,Free Elementor Wishlist, most features) plugin for WordPress is vulnerable to Insecure Direct Object Reference in all ve...
5.4 2025-01-30 CVE-2024-13732 cve The Responsive Blocks – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘section_tag’ parameter in all versions up to, and i...
6.5 2025-01-30 CVE-2024-13758 cve The CP Contact Form with PayPal plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.52. This is due to missing or incorrec...
N/A 2025-01-30 CVE-2025-0834 cve Privilege escalation vulnerability has been found in Wondershare Dr.Fone version 13.5.21. This vulnerability could allow an attacker to escalate privileges by replacing the bina...
6.1 2025-01-30 CVE-2025-0860 cve The VR-Frases (collect & share quotes) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via several parameters in all versions up to, and including, 3.0.1 du...
7.2 2025-01-30 CVE-2025-0861 cve The VR-Frases (collect & share quotes) plugin for WordPress is vulnerable to SQL Injection via several parameters in all versions up to, and including, 3.0.1 due to insufficient...
7.8 2025-01-30 CVE-2025-21107 cve Dell NetWorker, version(s) prior to 19.11.0.3, all versions of 19.10 & prior versions contain(s) an Unquoted Search Path or Element vulnerability. A low privileged attacker with...
N/A 2025-01-30 CVE-2025-23007 cve A vulnerability in the NetExtender Windows client log export function allows unauthorized access to sensitive Windows system files, potentially leading to privilege escalation.
9.8 2025-01-30 CVE-2025-0846 cve A vulnerability was found in 1000 Projects Employee Task Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/AdminLogin.ph...
9.8 2025-01-30 CVE-2025-0847 cve A vulnerability was found in 1000 Projects Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /index.php ...
9.8 2025-01-30 CVE-2025-0848 cve A vulnerability was found in Tenda A18 up to 15.13.07.09. It has been rated as critical. This issue affects the function SetCmdlineRun of the file /goform/SetCmdlineRun of the c...
8.1 2025-01-30 CVE-2025-0849 cve A vulnerability classified as critical has been found in CampCodes School Management Software 1.0. Affected is an unknown function of the file /edit-staff/ of the component Staf...
N/A 2025-01-30 CVE-2025-0373 cve On 64-bit systems, the implementation of VOP_VPTOFH() in the cd9660, tarfs and ext2fs filesystems overflows the destination FID buffer by 4 bytes, a stack buffer overflow. A NF...
N/A 2025-01-30 CVE-2025-0374 cve When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode ...
Page(s) : 1 ... 1078 1079 1080 1081 1082 1083 1084 1085 1086 1087 [1088] 1089 1090 1091 1092 1093 1094 1095 1096 1097 1098 ... Result(s) : 301176