| Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... | Result(s) : 327136 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-07-10 | CVE-2025-53378 | cve | A missing authentication vulnerability in Trend Micro Worry-Free Business Security Services (WFBSS) agent could have allowed an unauthenticated attacker to remotely take control... |
| N/A | 2025-07-10 | CVE-2025-53503 | cve | Trend Micro Cleaner One Pro is vulnerable to a Privilege Escalation vulnerability that could allow a local attacker to unintentionally delete privileged Trend Micro files includ... |
| N/A | 2025-07-10 | CVE-2025-53542 | cve | Headlamp is an extensible Kubernetes web UI. A command injection vulnerability was discovered in the codeSign.js script used in the macOS packaging workflow of the Kubernetes He... |
| N/A | 2025-07-10 | CVE-2025-53549 | cve | The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::find_event_with_relations... |
| N/A | 2025-07-10 | CVE-2025-53625 | cve | The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several #dpl parameters can leak u... |
| N/A | 2025-07-10 | CVE-2025-53626 | cve | pdfme is a TypeScript-based PDF generator and React-based UI. The expression evaluation feature in pdfme 5.2.0 to 5.4.0 contains critical vulnerabilities allowing sandbox escape... |
| N/A | 2025-07-10 | CVE-2025-53709 | cve | Secure-upload is a data submission service that validates single-use tokens when accepting submissions to channels. The service only installed on a small number of environments.... |
| 7.3 | 2025-07-10 | CVE-2025-7411 | cve | A vulnerability was found in code-projects LifeStyle Store 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /success... |
| N/A | 2025-07-10 | CVE-2025-2520 | cve | The Honeywell Experion PKS contains an Uninitialized Variable in the common Epic Platform Analyzer (EPA) communications. An attacker could potentially exploit this vulnerability... |
| N/A | 2025-07-10 | CVE-2025-34093 | cve | An authenticated command injection vulnerability exists in the Polycom HDX Series command shell interface accessible over Telnet. The lan traceroute command in the devcmds conso... |
| N/A | 2025-07-10 | CVE-2025-34095 | cve | An OS command injection vulnerability exists in Mako Server versions 2.5 and 2.6, specifically within the tutorial interface provided by the examples/save.lsp endpoint. An unaut... |
| N/A | 2025-07-10 | CVE-2025-34096 | cve | A stack-based buffer overflow vulnerability exists in Easy File Sharing HTTP Server version 7.2. The flaw is triggered when a crafted POST request is sent to the /sendemail.ghp ... |
| N/A | 2025-07-10 | CVE-2025-34097 | cve | An unrestricted file upload vulnerability exists in ProcessMaker versions prior to 3.5.4 due to improper handling of uploaded plugin archives. An attacker with administrative pr... |
| N/A | 2025-07-10 | CVE-2025-34098 | cve | A path traversal vulnerability exists in Riverbed SteelHead VCX appliances (confirmed in VCX255U 9.6.0a) due to improper input validation in the log filtering functionality expo... |
| N/A | 2025-07-10 | CVE-2025-34099 | cve | An unauthenticated command injection vulnerability exists in VICIdial versions 2.9 RC1 through 2.13 RC1, within the vicidial_sales_viewer.php component when password encryption ... |
| N/A | 2025-07-10 | CVE-2025-34100 | cve | An unrestricted file upload vulnerability exists in BuilderEngine 3.5.0 via the integration of the elFinder 2.0 file manager and its use of the jQuery File Upload plugin. The pl... |
| N/A | 2025-07-10 | CVE-2025-34101 | cve | An unauthenticated command injection vulnerability exists in Serviio Media Server versions 1.4 through 1.8 on Windows, in the /rest/action API endpoint exposed by the console co... |
| N/A | 2025-07-10 | CVE-2025-34102 | cve | A remote code execution vulnerability exists in CryptoLog (PHP version, discontinued since 2009) due to a chained exploitation of SQL injection and command injection vulnerabili... |
| N/A | 2025-07-10 | CVE-2025-45662 | cve | A cross-site scripting (XSS) vulnerability in the component /master/login.php of mpgram-web commit 94baadb allows attackers to execute arbitrary Javascript in the context of a u... |
| N/A | 2025-07-10 | CVE-2025-53506 | cve | Uncontrolled Resource Consumption vulnerability in Apache Tomcat if an HTTP/2 client did not acknowledge the initial settings frame that reduces the maximum permitted concurrent... |
| Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... | Result(s) : 327136 |
