Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... Result(s) : 325738

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
N/A 2025-07-02 CVE-2025-52891 cve ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. In versions 2.9.8 to before 2.9.11, an empty XML tag can cause a s...
N/A 2025-07-02 CVE-2025-53006 cve DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.11, in both PostgreSQL and Redshift, apart from parameters like "socketfactor...
N/A 2025-07-02 CVE-2025-53108 cve HomeBox is a home inventory and organization system. Prior to 0.20.1, HomeBox contains a missing authorization check in the API endpoints responsible for updating and deleting i...
N/A 2025-07-02 CVE-2025-53109 cve Model Context Protocol Servers is a collection of reference implementations for the model context protocol (MCP). Versions of Filesystem prior to 0.6.4 or 2025.7.01 could allow ...
N/A 2025-07-02 CVE-2025-53110 cve Model Context Protocol Servers is a collection of reference implementations for the model context protocol (MCP). Versions of Filesystem prior to 0.6.4 or 2025.7.01 could allow ...
N/A 2025-07-02 CVE-2025-53492 cve Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - MintyDocs Extension allow...
N/A 2025-07-02 CVE-2025-53493 cve Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - MintyDocs Extension allow...
N/A 2025-07-02 CVE-2025-53494 cve Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - TwoColConflict Extension ...
N/A 2025-07-02 CVE-2025-6725 cve In the PdfViewer component, a Cross-Site Scripting (XSS) vulnerability is possible if a specially-crafted document has already been loaded and the user engages with a tool that ...
6 2025-07-02 CVE-2025-20308 cve A vulnerability in Cisco Spaces Connector could allow an authenticated, local attacker to elevate privileges and execute arbitrary commands on the underlying operating system as...
6.1 2025-07-02 CVE-2025-20310 cve A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack agai...
N/A 2025-07-02 CVE-2025-52886 cve Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow...
N/A 2025-07-02 CVE-2025-53358 cve kotaemon is an open-source RAG-based tool for document comprehension. From versions 0.10.6 and prior, in libs/ktem/ktem/index/file/ui.py, the index_fn method accepts both URLs a...
N/A 2025-07-02 CVE-2025-53359 cve ethereum is a common ethereum structs for Rust. Prior to ethereum crate v0.18.0, signature malleability (according to EIP-2) was only checked for "legacy" transactions, but not ...
N/A 2025-07-02 CVE-2025-6942 cve The distributed engine versions 8.4.39.0 and earlier of Secret Server versions 11.7.49 and earlier can be exploited during an initial authorization event that would allow an att...
N/A 2025-07-02 CVE-2025-6943 cve Secret Server version 11.7 and earlier is vulnerable to a SQL report creation vulnerability that allows an administrator to gain access to restricted tables.
4.8 2025-07-02 CVE-2025-20307 cve A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an authenticated, remote attacker to to conduct cross-site sc...
N/A 2025-07-02 CVE-2025-20309 cve A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthen...
N/A 2025-07-02 CVE-2025-45424 cve Incorrect access control in Xinference before v1.4.0 allows attackers to access the Web GUI without authentication.
N/A 2025-07-02 CVE-2025-45814 cve Missing authentication checks in the query.fcgi endpoint of NS3000 v8.1.1.125110 , v7.2.8.124852 , and v7.x and NS2000 v7.02.08 allows attackers to execute a session hijacking a...
Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... Result(s) : 325738