| Page(s) : 1 ... 1188 1189 1190 1191 1192 1193 1194 1195 1196 1197 [1198] 1199 1200 1201 1202 1203 1204 1205 1206 1207 1208 ... | Result(s) : 327660 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-21 | CVE-2025-22150 | cve | Undici is an HTTP/1.1 client. Starting in version 4.5.0 and prior to versions 5.28.5, 6.21.1, and 7.2.3, undici uses `Math.random()` to choose the boundary for a multipart/form-... |
| N/A | 2025-01-21 | CVE-2025-22267 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bruce Wampler Weaver Themes Shortcode Compatibility allows Stored... |
| N/A | 2025-01-21 | CVE-2025-22276 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Enguerran Weiss Related Post Shortcode allows Stored XSS. This is... |
| N/A | 2025-01-21 | CVE-2025-22661 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vcita.com Online Payments – Get Paid with PayPal, Square & Stripe... |
| N/A | 2025-01-21 | CVE-2025-22721 | cve | Missing Authorization vulnerability in Farhan Noor ApplyOnline – Application Form Builder and Manager allows Exploiting Incorrectly Configured Access Control Security Levels. Th... |
| N/A | 2025-01-21 | CVE-2025-22722 | cve | Missing Authorization vulnerability in Widget Options Team Widget Options allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Widget Opti... |
| N/A | 2025-01-21 | CVE-2025-23454 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in flashmaniac Nature FlipBook allows Reflected XSS. This issue affe... |
| N/A | 2025-01-21 | CVE-2025-23461 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Andrea Dotta, Jacopo Campani, di xkoll.com Social2Blog allows Ref... |
| N/A | 2025-01-21 | CVE-2025-23477 | cve | Missing Authorization vulnerability in Realty Workstation Realty Workstation allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Realty Workstati... |
| N/A | 2025-01-21 | CVE-2025-23489 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brian Messenlehner of WebDevStudios WP-Announcements allows Refle... |
| N/A | 2025-01-21 | CVE-2025-23551 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in P. Razvan SexBundle allows Reflected XSS. This issue affects SexB... |
| N/A | 2025-01-21 | CVE-2025-23580 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Matthew Garvin BizLibrary allows Reflected XSS. This issue affect... |
| N/A | 2025-01-21 | CVE-2025-23994 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Estatebud Estatebud – Properties & Listings allows Stored XSS. Th... |
| N/A | 2025-01-21 | CVE-2025-23996 | cve | Cross-Site Request Forgery (CSRF) vulnerability in anyroad.com AnyRoad allows Cross Site Request Forgery. This issue affects AnyRoad: from n/a through 1.3.2. |
| 7.1 | 2025-01-21 | CVE-2025-24019 | cve | YesWiki is a wiki system written in PHP. In versions up to and including 4.4.5, it is possible for any authenticated user, through the use of the filemanager to delete any file ... |
| 6.1 | 2025-01-21 | CVE-2025-24020 | cve | WeGIA is a Web manager for charitable institutions. An Open Redirect vulnerability was identified in the `control.php` endpoint of versions up to and including 3.2.10 of the WeG... |
| 8.8 | 2025-01-21 | CVE-2025-24456 | cve | In JetBrains Hub before 2024.3.55417 privilege escalation was possible via LDAP authentication mapping |
| 5.5 | 2025-01-21 | CVE-2025-24457 | cve | In JetBrains YouTrack before 2024.3.55417 permanent tokens could be exposed in logs |
| 7.8 | 2025-01-21 | CVE-2025-24458 | cve | In JetBrains YouTrack before 2024.3.55417 account takeover was possible via spoofed email and Helpdesk integration |
| 6.1 | 2025-01-21 | CVE-2025-24459 | cve | In JetBrains TeamCity before 2024.12.1 reflected XSS was possible on the Vault Connection page |
| Page(s) : 1 ... 1188 1189 1190 1191 1192 1193 1194 1195 1196 1197 [1198] 1199 1200 1201 1202 1203 1204 1205 1206 1207 1208 ... | Result(s) : 327660 |
