| Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... | Result(s) : 325738 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-07-02 | CVE-2025-52891 | cve | ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. In versions 2.9.8 to before 2.9.11, an empty XML tag can cause a s... |
| N/A | 2025-07-02 | CVE-2025-53006 | cve | DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.11, in both PostgreSQL and Redshift, apart from parameters like "socketfactor... |
| N/A | 2025-07-02 | CVE-2025-53108 | cve | HomeBox is a home inventory and organization system. Prior to 0.20.1, HomeBox contains a missing authorization check in the API endpoints responsible for updating and deleting i... |
| N/A | 2025-07-02 | CVE-2025-53109 | cve | Model Context Protocol Servers is a collection of reference implementations for the model context protocol (MCP). Versions of Filesystem prior to 0.6.4 or 2025.7.01 could allow ... |
| N/A | 2025-07-02 | CVE-2025-53110 | cve | Model Context Protocol Servers is a collection of reference implementations for the model context protocol (MCP). Versions of Filesystem prior to 0.6.4 or 2025.7.01 could allow ... |
| N/A | 2025-07-02 | CVE-2025-53492 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - MintyDocs Extension allow... |
| N/A | 2025-07-02 | CVE-2025-53493 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - MintyDocs Extension allow... |
| N/A | 2025-07-02 | CVE-2025-53494 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - TwoColConflict Extension ... |
| N/A | 2025-07-02 | CVE-2025-6725 | cve | In the PdfViewer component, a Cross-Site Scripting (XSS) vulnerability is possible if a specially-crafted document has already been loaded and the user engages with a tool that ... |
| 6 | 2025-07-02 | CVE-2025-20308 | cve | A vulnerability in Cisco Spaces Connector could allow an authenticated, local attacker to elevate privileges and execute arbitrary commands on the underlying operating system as... |
| 6.1 | 2025-07-02 | CVE-2025-20310 | cve | A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack agai... |
| N/A | 2025-07-02 | CVE-2025-52886 | cve | Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow... |
| N/A | 2025-07-02 | CVE-2025-53358 | cve | kotaemon is an open-source RAG-based tool for document comprehension. From versions 0.10.6 and prior, in libs/ktem/ktem/index/file/ui.py, the index_fn method accepts both URLs a... |
| N/A | 2025-07-02 | CVE-2025-53359 | cve | ethereum is a common ethereum structs for Rust. Prior to ethereum crate v0.18.0, signature malleability (according to EIP-2) was only checked for "legacy" transactions, but not ... |
| N/A | 2025-07-02 | CVE-2025-6942 | cve | The distributed engine versions 8.4.39.0 and earlier of Secret Server versions 11.7.49 and earlier can be exploited during an initial authorization event that would allow an att... |
| N/A | 2025-07-02 | CVE-2025-6943 | cve | Secret Server version 11.7 and earlier is vulnerable to a SQL report creation vulnerability that allows an administrator to gain access to restricted tables. |
| 4.8 | 2025-07-02 | CVE-2025-20307 | cve | A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an authenticated, remote attacker to to conduct cross-site sc... |
| N/A | 2025-07-02 | CVE-2025-20309 | cve | A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthen... |
| N/A | 2025-07-02 | CVE-2025-45424 | cve | Incorrect access control in Xinference before v1.4.0 allows attackers to access the Web GUI without authentication. |
| N/A | 2025-07-02 | CVE-2025-45814 | cve | Missing authentication checks in the query.fcgi endpoint of NS3000 v8.1.1.125110 , v7.2.8.124852 , and v7.x and NS2000 v7.02.08 allows attackers to execute a session hijacking a... |
| Page(s) : 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 21 ... | Result(s) : 325738 |
