| Page(s) : 1 ... 1147 1148 1149 1150 1151 1152 1153 1154 1155 1156 [1157] 1158 1159 1160 1161 1162 1163 1164 1165 1166 1167 ... | Result(s) : 301612 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-22 | CVE-2024-42013 | cve | In GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security vulnerability. An attacker with Windows administrative or debugging privileges c... |
| N/A | 2025-01-22 | CVE-2024-55488 | cve | A stored cross-site scripting (XSS) vulnerability in Umbraco CMS v14.3.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. NOTE: This has been dis... |
| N/A | 2025-01-22 | CVE-2025-0638 | cve | The initial code parsing the manifest did not check the content of the file names yet later code assumed that it was checked and panicked when encountering illegal characters, r... |
| N/A | 2025-01-22 | CVE-2025-23809 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Blue Wrench Video Widget allows Reflected XSS. This issu... |
| N/A | 2025-01-22 | CVE-2025-23914 | cve | Deserialization of Untrusted Data vulnerability in NotFound Muzaara Google Ads Report allows Object Injection. This issue affects Muzaara Google Ads Report: from n/a through 3.1. |
| N/A | 2025-01-22 | CVE-2025-23992 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leetoo Toocheke Companion allows Stored XSS. This issue affects T... |
| N/A | 2025-01-22 | CVE-2024-51457 | cve | IBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.19 and 23.0.0 through 23.0.19 is vulnerable to cross-site scripting. This vulnerability allows an authenticate... |
| N/A | 2025-01-22 | CVE-2025-20128 | cve | A vulnerability in the Object Linking and Embedding 2 (OLE2) decryption routine of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) cond... |
| N/A | 2025-01-22 | CVE-2025-20156 | cve | A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated attacker with low privileges to elevate privileges to administrator on an affecte... |
| N/A | 2025-01-22 | CVE-2025-20165 | cve | A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in... |
| N/A | 2025-01-22 | CVE-2025-23028 | cve | Cilium is a networking, observability, and security solution with an eBPF-based dataplane. A denial of service vulnerability affects versions 1.14.0 through 1.14.7, 1.15.0 throu... |
| N/A | 2025-01-22 | CVE-2025-24397 | cve | An incorrect permission check in Jenkins GitLab Plugin 1.9.6 and earlier allows attackers with global Item/Configure permission (while lacking Item/Configure permission on any p... |
| N/A | 2025-01-22 | CVE-2025-24398 | cve | Jenkins Bitbucket Server Integration Plugin 2.1.0 through 4.1.3 (both inclusive) allows attackers to craft URLs that would bypass the CSRF protection of any target URL in Jenkins. |
| N/A | 2025-01-22 | CVE-2025-24399 | cve | Jenkins OpenId Connect Authentication Plugin 4.452.v2849b_d3945fa_ and earlier, except 4.438.440.v3f5f201de5dc, treats usernames as case-insensitive, allowing attackers on Jenki... |
| N/A | 2025-01-22 | CVE-2025-24400 | cve | Jenkins Eiffel Broadcaster Plugin 2.8.0 through 2.10.2 (both inclusive) uses the credential ID as the cache key during signing operations, allowing attackers able to create a cr... |
| N/A | 2025-01-22 | CVE-2025-24401 | cve | Jenkins Folder-based Authorization Strategy Plugin 217.vd5b_18537403e and earlier does not verify that permissions configured to be granted are enabled, potentially allowing use... |
| N/A | 2025-01-22 | CVE-2025-24402 | cve | A cross-site request forgery (CSRF) vulnerability in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers to connect to a Service Fabric URL using attacker-speci... |
| N/A | 2025-01-22 | CVE-2025-24403 | cve | A missing permission check in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of Azure credentials... |
| N/A | 2025-01-22 | CVE-2024-55957 | cve | In Thermo Fisher Scientific Xcalibur before 4.7 SP1 and Thermo Foundation Instrument Control Software (ICSW) before 3.1 SP10, the driver packages have a local privilege escalati... |
| N/A | 2025-01-22 | CVE-2025-0651 | cve | Improper Privilege Management vulnerability in Cloudflare WARP on Windows allows File Manipulation. User with a low system privilegesĀ can create a set of symlinks inside theĀ C... |
| Page(s) : 1 ... 1147 1148 1149 1150 1151 1152 1153 1154 1155 1156 [1157] 1158 1159 1160 1161 1162 1163 1164 1165 1166 1167 ... | Result(s) : 301612 |
