| Page(s) : 1 ... 106 107 108 109 110 111 112 113 114 115 [116] 117 118 119 120 121 122 123 124 125 126 ... | Result(s) : 298666 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-06-03 | CVE-2025-48950 | cve | MaxKB is an open-source AI assistant for enterprise. Prior to version 1.10.8-lts, Sandbox only restricts the execution permissions of binary files in common directories, such as... |
| N/A | 2025-06-03 | CVE-2025-48953 | cve | Umbraco is an ASP.NET content management system (CMS). Starting in version 14.0.0 and prior to versions 15.4.2 and 16.0.0, it's possible to upload a file that doesn't ... |
| N/A | 2025-06-03 | CVE-2025-48997 | cve | Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability that is present starting in version 1.4.4-lts.1 and prior to version 2.0.1 allows an attacker ... |
| 8.8 | 2025-06-03 | CVE-2025-48998 | cve | DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.6, a bypass of the patch for CVE-2025-27103 allows authenticated users to rea... |
| 8.8 | 2025-06-03 | CVE-2025-5521 | cve | A vulnerability was found in WuKongOpenSource WukongCRM 9.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /system/... |
| 7.3 | 2025-06-03 | CVE-2025-5522 | cve | A vulnerability was found in jack0240 ? bskms ????????? up to dffe6640b5b54d8e29da6f060e0493fea74b3fad. It has been rated as critical. Affected by this issue is some unknown fun... |
| N/A | 2025-06-03 | CVE-2025-23097 | cve | An issue was discovered in Samsung Mobile Processor Exynos 1380. The lack of a length check leads to out-of-bounds writes. |
| N/A | 2025-06-03 | CVE-2025-23098 | cve | An issue was discovered in Samsung Mobile Processor Exynos 980, 990, 1080, 2100, 1280, 2200, 1380. A Use-After-Free in the mobile processor leads to privilege escalation. |
| N/A | 2025-06-03 | CVE-2025-23100 | cve | An issue was discovered in Samsung Mobile Processor Exynos 1280, 2200, 1380, 1480, 2400. The absence of a NULL check leads to a Denial of Service. |
| N/A | 2025-06-03 | CVE-2025-35036 | cve | Hibernate Validator before 6.2.0 and 7.0.0, by default and depending how it is used, may interpolate user-supplied input in a constraint violation message with Expression Langua... |
| 6.1 | 2025-06-03 | CVE-2025-5523 | cve | A vulnerability classified as problematic has been found in enilu web-flash 1.0. This affects the function fileService.upload of the file src/main/java/cn/enilu/flash/api/contro... |
| 8.1 | 2025-06-03 | CVE-2025-5525 | cve | A vulnerability was found in Jrohy trojan up to 2.15.3. It has been declared as critical. This vulnerability affects the function LogChan of the file trojan/util/linux.go. The m... |
| N/A | 2025-06-03 | CVE-2025-48951 | cve | Auth0-PHP is a PHP SDK for Auth0 Authentication and Management APIs. Versions 8.0.0-BETA3 prior to 8.3.1 contain a vulnerability due to insecure deserialization of cookie data. ... |
| 8.8 | 2025-06-03 | CVE-2025-48999 | cve | DataEase is an open source business intelligence and data visualization tool. A bypass of CVE-2025-46566's patch exists in versions prior to 2.10.10. In a malicious payload... |
| N/A | 2025-06-03 | CVE-2025-49000 | cve | InvenTree is an Open Source Inventory Management System. Prior to version 0.17.13, the skip field in the built-in `label-sheet` plugin lacks an upper bound, so a large value for... |
| 9.8 | 2025-06-03 | CVE-2025-49001 | cve | DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.10, secret verification does not take effect successfully, so a user can use ... |
| 9.8 | 2025-06-03 | CVE-2025-49002 | cve | DataEase is an open source business intelligence and data visualization tool. Versions prior to version 2.10.10 have a flaw in the patch for CVE-2025-32966 that allow the patch ... |
| N/A | 2025-06-03 | CVE-2025-5527 | cve | A vulnerability was found in Tenda RX3 16.03.13.11_multi_TDE01. It has been rated as critical. This issue affects the function save_staticroute_data of the file /goform/SetStati... |
| N/A | 2025-06-03 | CVE-2025-45855 | cve | An arbitrary file upload vulnerability in the component /upload/GoodsCategory/image of erupt v1.12.19 allows attackers to execute arbitrary code via uploading a crafted file. |
| N/A | 2025-06-03 | CVE-2025-46154 | cve | Foxcms v1.25 has a SQL time injection in the $_POST['dbname'] parameter of installdb.php. |
| Page(s) : 1 ... 106 107 108 109 110 111 112 113 114 115 [116] 117 118 119 120 121 122 123 124 125 126 ... | Result(s) : 298666 |
