| Page(s) : 1 ... 1081 1082 1083 1084 1085 1086 1087 1088 1089 1090 [1091] 1092 1093 1094 1095 1096 1097 1098 1099 1100 1101 ... | Result(s) : 301176 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.9 | 2025-01-29 | CVE-2023-37412 | cve | IBM Aspera Faspex 5.0.0 through 5.0.10 could allow a privileged user to make system changes without proper access controls. |
| 5.3 | 2025-01-29 | CVE-2023-37413 | cve | IBM Aspera Faspex 5.0.0 through 5.0.10 could disclose sensitive username information due to an observable response discrepancy. |
| N/A | 2025-01-29 | CVE-2025-24527 | cve | An issue was discovered in Akamai Enterprise Application Access (EAA) before 2025-01-17. If an admin knows another tenant's 128-bit connector GUID, they can execute debug c... |
| N/A | 2025-01-29 | CVE-2025-24791 | cve | snowflake-connector-nodejs is a NodeJS driver for Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake NodeJS Driver. File permissions checks of the t... |
| N/A | 2025-01-29 | CVE-2025-24789 | cve | Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake. Snowflake discovered and remediated a vulnerability... |
| N/A | 2025-01-29 | CVE-2025-24790 | cve | Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake. Snowflake discovered and remediated a vulnerability... |
| N/A | 2025-01-29 | CVE-2025-24882 | cve | regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in... |
| N/A | 2025-01-29 | CVE-2025-0617 | cve | An attacker with access to an HX 10.0.0 and previous versions, may send specially-crafted data to the HX console. The malicious detection would then trigger file parsing conta... |
| N/A | 2025-01-29 | CVE-2025-0762 | cve | Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium se... |
| 6.4 | 2025-01-29 | CVE-2024-13561 | cve | The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's brid_override_yt shortcode in all versions up to, and inclu... |
| N/A | 2025-01-29 | CVE-2024-41140 | cve | Zohocorp ManageEngine Applications Manager versions 174000 and prior are vulnerable to the incorrect authorization in the update user function. |
| N/A | 2025-01-29 | CVE-2024-54461 | cve | The file names constructed within file_selector are missing sanitization checks leaving them vulnerable to malicious document providers. This may result in cases where a user wi... |
| N/A | 2025-01-29 | CVE-2024-54462 | cve | The file names constructed within image_picker are missing sanitization checks leaving them vulnerable to malicious document providers. This may result in cases where a user wit... |
| 6.4 | 2025-01-29 | CVE-2025-0353 | cve | The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all version... |
| N/A | 2025-01-29 | CVE-2024-12749 | cve | The Competition Form WordPress plugin through 2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting whi... |
| 7.2 | 2025-01-29 | CVE-2024-13696 | cve | The Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wishlist_name’ parameter i... |
| N/A | 2025-01-29 | CVE-2024-7695 | cve | Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation, which allows data to be written to memory ... |
| N/A | 2025-01-29 | CVE-2024-57965 | cve | In axios before 1.7.8, lib/helpers/isURLSameOrigin.js does not use a URL object when determining an origin, and has a potentially unwanted setAttribute('href',href) ca... |
| N/A | 2025-01-29 | CVE-2021-3978 | cve | When copying files with rsync, octorpki uses the "-a" flag 0, which forces rsync to copy binaries with the suid bit set as root. Since the provided service definition defaults t... |
| 9.8 | 2025-01-29 | CVE-2025-0793 | cve | A vulnerability has been found in ESAFENET CDG V5 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /todoDetail.jsp. The manipul... |
| Page(s) : 1 ... 1081 1082 1083 1084 1085 1086 1087 1088 1089 1090 [1091] 1092 1093 1094 1095 1096 1097 1098 1099 1100 1101 ... | Result(s) : 301176 |
