| Page(s) : 1 ... 1161 1162 1163 1164 1165 1166 1167 1168 1169 1170 [1171] 1172 1173 1174 1175 1176 1177 1178 1179 1180 1181 ... | Result(s) : 301652 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-21 | CVE-2025-23489 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brian Messenlehner of WebDevStudios WP-Announcements allows Refle... |
| N/A | 2025-01-21 | CVE-2025-23551 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in P. Razvan SexBundle allows Reflected XSS. This issue affects SexB... |
| N/A | 2025-01-21 | CVE-2025-23580 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Matthew Garvin BizLibrary allows Reflected XSS. This issue affect... |
| N/A | 2025-01-21 | CVE-2025-23994 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Estatebud Estatebud – Properties & Listings allows Stored XSS. Th... |
| N/A | 2025-01-21 | CVE-2025-23996 | cve | Cross-Site Request Forgery (CSRF) vulnerability in anyroad.com AnyRoad allows Cross Site Request Forgery. This issue affects AnyRoad: from n/a through 1.3.2. |
| 7.1 | 2025-01-21 | CVE-2025-24019 | cve | YesWiki is a wiki system written in PHP. In versions up to and including 4.4.5, it is possible for any authenticated user, through the use of the filemanager to delete any file ... |
| 6.1 | 2025-01-21 | CVE-2025-24020 | cve | WeGIA is a Web manager for charitable institutions. An Open Redirect vulnerability was identified in the `control.php` endpoint of versions up to and including 3.2.10 of the WeG... |
| 8.8 | 2025-01-21 | CVE-2025-24456 | cve | In JetBrains Hub before 2024.3.55417 privilege escalation was possible via LDAP authentication mapping |
| 5.5 | 2025-01-21 | CVE-2025-24457 | cve | In JetBrains YouTrack before 2024.3.55417 permanent tokens could be exposed in logs |
| 7.8 | 2025-01-21 | CVE-2025-24458 | cve | In JetBrains YouTrack before 2024.3.55417 account takeover was possible via spoofed email and Helpdesk integration |
| 6.1 | 2025-01-21 | CVE-2025-24459 | cve | In JetBrains TeamCity before 2024.12.1 reflected XSS was possible on the Vault Connection page |
| 4.3 | 2025-01-21 | CVE-2025-24460 | cve | In JetBrains TeamCity before 2024.12.1 improper access control allowed to see Projects’ names in the agent pool |
| 6.5 | 2025-01-21 | CVE-2025-24461 | cve | In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint |
| 6.4 | 2025-01-21 | CVE-2024-11226 | cve | The FireCask Like & Share Button plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'width' parameter in all versions up to, and including, 1.2 ... |
| N/A | 2025-01-21 | CVE-2024-13230 | cve | The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection via the ‘SuperSocializerKey’ parameter i... |
| 6.1 | 2025-01-21 | CVE-2024-13444 | cve | The wp-greet plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.2. This is due to missing or incorrect nonce validation on ... |
| N/A | 2025-01-21 | CVE-2024-37284 | cve | Improper handling of alternate encoding occurs when Elastic Defend on Windows systems attempts to scan a file or process encoded as a multibyte character. This leads to an uncau... |
| 7.5 | 2025-01-21 | CVE-2024-43709 | cve | An allocation of resources without limits or throttling in Elasticsearch can lead to an OutOfMemoryError exception resulting in a crash via a specially crafted query using an SQ... |
| N/A | 2025-01-21 | CVE-2024-52973 | cve | An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/log_entries/summary. This can be carried out ... |
| 5.4 | 2025-01-21 | CVE-2025-0450 | cve | The Betheme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's custom JS functionality in all versions up to, and including, 27.6.1 due to i... |
| Page(s) : 1 ... 1161 1162 1163 1164 1165 1166 1167 1168 1169 1170 [1171] 1172 1173 1174 1175 1176 1177 1178 1179 1180 1181 ... | Result(s) : 301652 |
