| Page(s) : 1 ... 107 108 109 110 111 112 113 114 115 116 [117] 118 119 120 121 122 123 124 125 126 127 ... | Result(s) : 287478 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-13 | CVE-2025-25363 | cve | An authenticated stored cross-site scripting (XSS) vulnerability in The Plugin People Enterprise Mail Handler for Jira Data Center (JEMH) before v4.1.69-dc allows attackers with... |
| N/A | 2025-03-13 | CVE-2025-25598 | cve | Incorrect access control in the scheduled tasks console of Inova Logic CUSTOMER MONITOR (CM) v3.1.757.1 allows attackers to escalate privileges via placing a crafted executable ... |
| N/A | 2025-03-13 | CVE-2025-27496 | cve | Snowflake, a platform for using artificial intelligence in the context of cloud computing, has a vulnerability in the Snowflake JDBC driver ("Driver") in versions 3.0.13 through... |
| N/A | 2025-03-13 | CVE-2025-2229 | cve | A token is created using the username, current date/time, and a fixed AES-128 encryption key, which is the same across all installations. |
| N/A | 2025-03-13 | CVE-2025-2230 | cve | A flaw exists in the Windows login flow where an AuthContext token can be exploited for replay attacks and authentication bypass. |
| N/A | 2025-03-13 | CVE-2025-21104 | cve | Dell NetWorker, 19.11.0.3 and below versions, contain(s) an Open Redirect Vulnerability in NMC. An unauthenticated attacker with remoter access could potentially exploit this vu... |
| N/A | 2025-03-13 | CVE-2025-29994 | cve | This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID c... |
| N/A | 2025-03-13 | CVE-2025-29995 | cve | This vulnerability exists in the CAP back office application due to a weak password-reset mechanism implemented at API endpoints. An authenticated remote attacker with a valid l... |
| N/A | 2025-03-13 | CVE-2025-29996 | cve | This vulnerability exists in the CAP back office application due to improper implementation of OTP verification mechanism in its API based login. A remote attacker with valid cr... |
| N/A | 2025-03-13 | CVE-2025-29997 | cve | This vulnerability exists in the CAP back office application due to improper authorization checks on certain API endpoints. An authenticated remote attacker could exploit this v... |
| N/A | 2025-03-13 | CVE-2025-29998 | cve | This vulnerability exists in the CAP back office application due to missing rate limiting on OTP requests in an API endpoint. An authenticated remote attacker could exploit this... |
| 7.5 | 2025-03-13 | CVE-2024-10942 | cve | The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 7.89 via deserialization of untrusted inp... |
| N/A | 2025-03-13 | CVE-2025-1635 | cve | Exposure of sensitive information in hub data source export feature in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows a user exporting a hub data sou... |
| N/A | 2025-03-13 | CVE-2025-1636 | cve | Exposure of sensitive information in My Personal Credentials password history component in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows an authenti... |
| N/A | 2025-03-13 | CVE-2025-2277 | cve | Exposure of password in web-based SSH authentication component in Devolutions Server 2024.3.13 and earlier allows a user to unadvertently leak his SSH password due to missing pa... |
| N/A | 2025-03-13 | CVE-2025-2278 | cve | Improper access control in temporary access requests and checkout requests endpoints in Devolutions Server 2024.3.13 and earlier allows an authenticated user to access informati... |
| N/A | 2025-03-13 | CVE-2025-2280 | cve | Improper access control in web extension restriction feature in Devolutions Server 2024.3.4.0 and earlier allows an authenticated user to bypass the browser extension restrict... |
| N/A | 2025-03-13 | CVE-2024-22880 | cve | Cross Site Scripting vulnerability in Zadarma Zadarma extension v.1.0.11 allows a remote attacker to execute a arbitrary code via a crafted script to the webchat component. |
| N/A | 2025-03-13 | CVE-2024-28803 | cve | Cross-site scripting (XSS) vulnerability in Italtel S.p.A. i-MCS NFV v.12.1.0-20211215 allows unauthenticated remote attackers to inject arbitrary web script or HTML into HTTP/P... |
| N/A | 2025-03-13 | CVE-2024-57348 | cve | Cross Site Scripting vulnerability in PecanProject pecan through v.1.8.0 allows a remote attacker to execute arbitrary code via the crafted payload to the hostname, sitegroupid,... |
| Page(s) : 1 ... 107 108 109 110 111 112 113 114 115 116 [117] 118 119 120 121 122 123 124 125 126 127 ... | Result(s) : 287478 |
