| Page(s) : 1 ... 1082 1083 1084 1085 1086 1087 1088 1089 1090 1091 [1092] 1093 1094 1095 1096 1097 1098 1099 1100 1101 1102 ... | Result(s) : 327198 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-03 | CVE-2024-56898 | cve | Broken access control vulnerability in Geovision GV-ASWeb with version v6.1.0.0 or less. This vulnerability allows low privilege users perform actions that they aren't auth... |
| N/A | 2025-02-03 | CVE-2024-56901 | cve | A Cross-Site Request Forgery (CSRF) vulnerability in Geovision GV-ASWeb application with the version 6.1.1.0 or less that allows attackers to arbitrarily create Administrator ac... |
| N/A | 2025-02-03 | CVE-2024-56902 | cve | Information disclosure vulnerability in Geovision GV-ASManager web application with the version v6.1.0.0 or less, which discloses account information, including cleartext password. |
| N/A | 2025-02-03 | CVE-2024-56903 | cve | Geovision GV-ASWeb with the version 6.1.1.0 or less allows attackers to modify POST request method with the GET against critical functionalities, such as account management. Thi... |
| N/A | 2025-02-03 | CVE-2024-57451 | cve | ChestnutCMS |
| N/A | 2025-02-03 | CVE-2025-22918 | cve | Polycom RealPresence Group 500 |
| N/A | 2025-02-03 | CVE-2025-24370 | cve | Django-Unicorn adds modern reactive component functionality to Django templates. Affected versions of Django-Unicorn are vulnerable to python class pollution vulnerability. The ... |
| 7.5 | 2025-02-03 | CVE-2025-24899 | cve | reNgine is an automated reconnaissance framework for web applications. A vulnerability was discovered in reNgine, where **an insider attacker with any role** (such as Auditor, P... |
| N/A | 2025-02-03 | CVE-2025-24959 | cve | zx is a tool for writing better scripts. An attacker with control over environment variable values can inject unintended environment variables into `process.env`. This can lead ... |
| N/A | 2025-02-03 | CVE-2025-24960 | cve | Jellystat is a free and open source Statistics App for Jellyfin. In affected versions Jellystat is directly using a user input in the route(s). This can lead to Path Traversal V... |
| N/A | 2025-02-03 | CVE-2025-24961 | cve | org.gaul S3Proxy implements the S3 API and proxies requests. Users of the filesystem and filesystem-nio2 storage backends could unintentionally expose local files to users. This... |
| 8.8 | 2025-02-03 | CVE-2025-24962 | cve | reNgine is an automated reconnaissance framework for web applications. In affected versions a user can inject commands via the nmap_cmd parameters. This issue has been addressed... |
| N/A | 2025-02-03 | CVE-2024-35177 | cve | Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerize... |
| N/A | 2025-02-03 | CVE-2024-47770 | cve | Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerize... |
| N/A | 2025-02-03 | CVE-2025-22129 | cve | Tuleap is an Open Source Suite to improve management of software developments and collaboration. In affected versions an unauthorized user might get access to restricted informa... |
| N/A | 2025-02-03 | CVE-2025-23210 | cve | phpoffice/phpspreadsheet is a pure PHP library for reading and writing spreadsheet files. Affected versions have been found to have a Bypass of the Cross-site Scripting (XSS) sa... |
| N/A | 2025-02-03 | CVE-2025-24029 | cve | Tuleap is an Open Source Suite to improve management of software developments and collaboration. Users (possibly anonymous ones if the widget is used in the dashboard of a publi... |
| N/A | 2025-02-03 | CVE-2025-24371 | cve | CometBFT is a distributed, Byzantine fault-tolerant, deterministic state machine replication engine. In the `blocksync` protocol peers send their `base` and `latest` heights whe... |
| 8.8 | 2025-02-03 | CVE-2025-24901 | cve | WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, `deletar_permissao.php` endpoint. This vulnerability c... |
| 8.8 | 2025-02-03 | CVE-2025-24902 | cve | WeGIA is a Web Manager for Charitable Institutions. A SQL Injection vulnerability was discovered in the WeGIA application, `salvar_cargo.php` endpoint. This vulnerability could ... |
| Page(s) : 1 ... 1082 1083 1084 1085 1086 1087 1088 1089 1090 1091 [1092] 1093 1094 1095 1096 1097 1098 1099 1100 1101 1102 ... | Result(s) : 327198 |
