Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... Result(s) : 226164

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
9.8 2022-11-28 CVE-2022-41912 cve The crewjam/saml go library prior to version 0.4.9 is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements. This issue ha...
4.3 2022-11-28 CVE-2022-41921 cve Discourse is an open-source discussion platform. Prior to version 2.9.0.beta13, users can post chat messages of an unlimited length, which can cause a denial of service for othe...
4.3 2022-11-28 CVE-2022-41944 cve Discourse is an open-source discussion platform. In stable versions prior to 2.8.12 and beta or tests-passed versions prior to 2.9.0.beta.13, under certain conditions, a user ca...
7.5 2022-11-28 CVE-2022-41957 cve Muhammara is a node module with c/cpp bindings to modify PDF with JavaScript for node or electron. The package muhammara before 2.6.2 and from 3.0.0 and before 3.3.0, as well as...
9.8 2022-11-28 CVE-2022-44283 cve AVS Audio Converter 10.3 is vulnerable to Buffer Overflow.
5.4 2022-11-28 CVE-2022-44284 cve Dinstar FXO Analog VoIP Gateway DAG2000-16O is vulnerable to Cross Site Scripting (XSS).
9.8 2022-11-28 CVE-2022-44400 cve Purchase Order Management System v1.0 contains a file upload vulnerability via /purchase_order/admin/?page=system_info.
9.8 2022-11-28 CVE-2022-44401 cve Online Tours & Travels Management System v1.0 contains an arbitrary file upload vulnerability via /tour/admin/file.php.
7.4 2022-11-28 CVE-2021-45036 cve Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server.
9.8 2022-11-28 CVE-2022-44399 cve Poultry Farm Management System v1.0 contains a SQL injection vulnerability via the del parameter at /Redcock-Farm/farm/category.php.
5.5 2022-11-28 CVE-2022-41732 cve IBM Maximo Mobile 8.7 and 8.8 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 237407.
5.3 2022-11-28 CVE-2022-4169 cve The Theme and plugin translation for Polylang is vulnerable to authorization bypass in versions up to, and including, 3.2.16 due to missing capability checks in the process_poly...
5.5 2022-11-28 CVE-2022-43588 cve A null pointer dereference vulnerability exists in the handle_ioctl_83150 functionality of Callback technologies CBFS Filter 20.0.8317. A specially-crafted I/O request packet (I...
5.5 2022-11-28 CVE-2022-43589 cve A null pointer dereference vulnerability exists in the handle_ioctl_8314C functionality of Callback technologies CBFS Filter 20.0.8317. A specially-crafted I/O request packet (I...
5.5 2022-11-28 CVE-2022-43590 cve A null pointer dereference vulnerability exists in the handle_ioctl_0x830a0_systembuffer functionality of Callback technologies CBFS Filter 20.0.8317. A specially-crafted I/O re...
9.8 2022-11-28 CVE-2022-36193 cve SQL injection in School Management System 1.0 allows remote attackers to modify or delete data, causing persistent changes to the application's content or behavior by using...
7.5 2022-11-28 CVE-2022-38900 cve decode-uri-component 0.2.0 is vulnerable to Improper Input Validation resulting in DoS.
8.2 2022-11-28 CVE-2022-4020 cve Vulnerability in the HQSwSmiDxe DXE driver on some consumer Acer Notebook devices may allow an attacker with elevated privileges to modify UEFI Secure Boot settings by modifying...
4.3 2022-11-28 CVE-2021-25059 cve The Download Plugin WordPress plugin before 2.0.0 does not properly validate a user has the required privileges to access a backup's nonce identifier, which may allow any u...
6.1 2022-11-28 CVE-2022-2311 cve The Find and Replace All WordPress plugin before 1.3 does not sanitize and escape some parameters from its setting page before outputting them back to the user, leading to a Ref...
Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... Result(s) : 226164