| Page(s) : 1 ... 1102 1103 1104 1105 1106 1107 1108 1109 1110 1111 [1112] 1113 1114 1115 1116 1117 1118 1119 1120 1121 1122 ... | Result(s) : 301260 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2025-01-27 | CVE-2025-24367 | cve | Cacti is an open source performance and fault management framework. An authenticated Cacti user can abuse graph creation and graph template functionality to create arbitrary PHP... |
| 7.5 | 2025-01-27 | CVE-2025-24368 | cve | Cacti is an open source performance and fault management framework. Some of the data stored in automation_tree_rules.php is not thoroughly checked and is used to concatenate the... |
| 4.4 | 2025-01-27 | CVE-2024-12345 | cve | A vulnerability classified as problematic was found in INW Krbyyyzo 25.2002. Affected by this vulnerability is an unknown functionality of the file /gbo.aspx of the component Da... |
| N/A | 2025-01-27 | CVE-2025-0695 | cve | An Allocation of Resources Without Limits or Throttling vulnerability in Cesanta Frozen versions less than 1.7 allows an attacker to induce a crash of the component embedding th... |
| N/A | 2025-01-27 | CVE-2025-0696 | cve | A NULL Pointer Dereference vulnerability in Cesanta Frozen versions less than 1.7 allows an attacker to induce a crash of the component embedding the library by supplying a mali... |
| N/A | 2025-01-27 | CVE-2024-55931 | cve | Xerox Workplace Suite stores tokens in session storage, which may expose them to potential access if a user's session is compromised. The patch for this vulnerability wil... |
| 8.9 | 2025-01-27 | CVE-2022-4975 | cve | A flaw was found in the Red Hat Advanced Cluster Security (RHACS) portal. When rendering a table view in the portal, for example, on any of the /main/configmanagement/* endpoint... |
| N/A | 2025-01-27 | CVE-2024-11348 | cve | Eura7 CMSmanager in version 4.6 and below is vulnerable to Reflected XSS attacks through manipulation of return GET request parameter sent to a specific endpoint. The vulnerabil... |
| N/A | 2025-01-27 | CVE-2025-22513 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Simple Locator allows Reflected XSS. This issue affects ... |
| N/A | 2025-01-27 | CVE-2025-23457 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Clodeo Shipdeo allows Reflected XSS. This issue affects Shipdeo: ... |
| N/A | 2025-01-27 | CVE-2025-23792 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Busters Passwordless WP – Login with your glance or fingerprin... |
| N/A | 2025-01-27 | CVE-2025-24533 | cve | Cross-Site Request Forgery (CSRF) vulnerability in MetaSlider Responsive Slider by MetaSlider allows Cross Site Request Forgery. This issue affects Responsive Slider by MetaSlid... |
| N/A | 2025-01-27 | CVE-2025-24584 | cve | Missing Authorization vulnerability in BdThemes Ultimate Store Kit Elementor Addons allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects U... |
| N/A | 2025-01-27 | CVE-2025-24601 | cve | Deserialization of Untrusted Data vulnerability in ThimPress FundPress allows Object Injection. This issue affects FundPress: from n/a through 2.0.6. |
| N/A | 2025-01-27 | CVE-2025-24612 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in MORKVA Shipping for Nova Poshta allows SQL Injection. This issue ... |
| N/A | 2025-01-27 | CVE-2025-24664 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eniture Technology LTL Freight Quotes – Worldwide Express Edition... |
| N/A | 2025-01-27 | CVE-2025-24685 | cve | Path Traversal vulnerability in MORKVA Morkva UA Shipping allows PHP Local File Inclusion. This issue affects Morkva UA Shipping: from n/a through 1.0.18. |
| N/A | 2025-01-27 | CVE-2025-24754 | cve | Missing Authorization vulnerability in Houzez.co Houzez. This issue affects Houzez: from n/a through 3.4.0. |
| N/A | 2025-01-27 | CVE-2024-12280 | cve | The WP Customer Area WordPress plugin through 8.2.4 does not have CSRF check in place when deleting its logs, which could allow attackers to make a logged in to delete them via ... |
| N/A | 2025-01-27 | CVE-2024-12321 | cve | The WC Affiliate WordPress plugin through 2.3.9 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting whic... |
| Page(s) : 1 ... 1102 1103 1104 1105 1106 1107 1108 1109 1110 1111 [1112] 1113 1114 1115 1116 1117 1118 1119 1120 1121 1122 ... | Result(s) : 301260 |
