Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 1166 1167 1168 1169 1170 1171 1172 1173 1174 1175 [1176] 1177 1178 1179 1180 1181 1182 1183 1184 1185 1186 ... Result(s) : 301652

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
8.1 2025-01-20 CVE-2025-23044 cve PwnDoc is a penetration test report generator. There is no CSRF protection in pwndoc, allowing attackers to send requests on a logged-in user's behalf. This includes GET an...
9.8 2025-01-20 CVE-2025-23218 cve WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the WeGIA application, s...
9.8 2025-01-20 CVE-2025-23219 cve WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the WeGIA application, s...
9.8 2025-01-20 CVE-2025-23220 cve WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the WeGIA application, s...
N/A 2025-01-20 CVE-2025-24010 cve Vite is a frontend tooling framework for javascript. Vite allowed any websites to send any requests to the development server and read the response due to default CORS settings ...
N/A 2025-01-20 CVE-2025-24013 cve CodeIgniter is a PHP full-stack web framework. Prior to 4.5.8, CodeIgniter lacked proper header validation for its name and value. The potential attacker can construct deliberat...
N/A 2025-01-20 CVE-2025-23221 cve Fedify is a TypeScript library for building federated server apps powered by ActivityPub and other standards. This vulnerability allows a user to maneuver the Webfinger mechanis...
5.9 2025-01-20 CVE-2024-22347 cve IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sens...
5.3 2025-01-20 CVE-2024-22348 cve IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged action...
4 2025-01-20 CVE-2024-22349 cve IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 allows web pages to be stored locally which can be read by another user on the system.
N/A 2025-01-20 CVE-2025-23214 cve Cosmos provides users the ability self-host a home server by acting as a secure gateway to your application, as well as a server manager. By monitoring the error code returned i...
N/A 2025-01-20 CVE-2023-52923 cve In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: adapt set backend to use GC transaction API Use the GC transaction API to replace the...
N/A 2025-01-20 CVE-2025-0479 cve This vulnerability exists in the CP Plus Router due to insecure handling of cookie flags used within its web interface. A remote attacker could exploit this vulnerability by int...
N/A 2025-01-20 CVE-2024-13176 cve Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel i...
N/A 2025-01-20 CVE-2025-21655 cve In the Linux kernel, the following vulnerability has been resolved: io_uring/eventfd: ensure io_eventfd_signal() defers another RCU period io_eventfd_do_signal() is invoked fr...
N/A 2025-01-20 CVE-2025-24337 cve WriteFreely through 0.15.1, when MySQL is used, allows local users to discover credentials by reading config.ini.
N/A 2025-01-20 CVE-2025-0590 cve Improper permission settings for mobile applications (com.transsion.carlcare) may lead to information leakage risk.
3.5 2025-01-20 CVE-2025-0578 cve A vulnerability was found in Facile Sistemas Cloud Apps up to 20250107. It has been classified as problematic. Affected is an unknown function of the file /account/forgotpasswor...
6.1 2025-01-20 CVE-2025-0583 cve The a+HRD from aEnrich Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user...
4.5 2025-01-20 CVE-2024-13524 cve A vulnerability has been found in obsproject OBS Studio up to 30.0.2 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality. The ma...
Page(s) : 1 ... 1166 1167 1168 1169 1170 1171 1172 1173 1174 1175 [1176] 1177 1178 1179 1180 1181 1182 1183 1184 1185 1186 ... Result(s) : 301652