| Page(s) : 1 2 3 4 5 6 7 8 9 10 11 [12] 13 14 15 16 17 18 19 20 21 22 ... | Result(s) : 114970 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-06-13 | CVE-2025-5928 | cve | The WP Sliding Login/Dashboard Panel plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.1. This is due to missing or inco... |
| 4.3 | 2025-06-13 | CVE-2025-5930 | cve | The WP2HTML plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.2. This is due to missing or incorrect nonce validation on... |
| 5.3 | 2025-06-13 | CVE-2025-5938 | cve | The Digital Marketing and Agency Templates Addons for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.1. Thi... |
| 4.4 | 2025-06-13 | CVE-2025-5939 | cve | The Telegram for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.6.1 due to insufficient input sa... |
| 6.4 | 2025-06-13 | CVE-2025-5950 | cve | The IndieBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘kind’ parameter in all versions up to, and including, 0.13.2 due to insufficient input... |
| 5.3 | 2025-06-13 | CVE-2025-5815 | cve | The Traffic Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tfcm_maybe_set_bot_flags() function in all v... |
| 4.9 | 2025-06-12 | CVE-2025-49081 | cve | There is an insufficient input validation vulnerability in the warehouse component of Absolute Secure Access prior to server version 13.55. Attackers with system administrator p... |
| 6.1 | 2025-06-12 | CVE-2025-40592 | cve | A vulnerability has been identified in Mendix Studio Pro 10 (All versions < V10.23.0), Mendix Studio Pro 10.12 (All versions < V10.12.17), Mendix Studio Pro 10.18 (All versions ... |
| 5.3 | 2025-06-12 | CVE-2025-6003 | cve | The WordPress Single Sign-On (SSO) plugin for WordPress is vulnerable to unauthorized access due to a misconfigured capability check on a function in all versions up to, and inc... |
| 4.8 | 2025-06-11 | CVE-2025-0917 | cve | IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and 12.0.4 is vulnerable to stored cross-site scripting. This vulnerability allows a... |
| 5.3 | 2025-06-11 | CVE-2025-0923 | cve | IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and 12.0.4 stores source code on the web server that could aid in further attacks ag... |
| 5.5 | 2025-06-11 | CVE-2025-4605 | cve | A maliciously crafted .usdc file, when loaded through Autodesk Maya, can force an uncontrolled memory allocation vulnerability. A malicious actor may leverage this vulnerability... |
| 5.3 | 2025-06-11 | CVE-2025-0163 | cve | IBM Security Verify Access Appliance and Docker 10.0 through 10.0.8 could allow a remote attacker to enumerate usernames due to an observable response discrepancy of disabled ac... |
| 6.7 | 2025-06-11 | CVE-2025-3473 | cve | IBM Security Guardium 12.1 could allow a local privileged user to escalate their privileges to root due to insecure inherited permissions created by the program. |
| 6.5 | 2025-06-11 | CVE-2025-48448 | cve | Allocation of Resources Without Limits or Throttling vulnerability in Drupal Admin Audit Trail allows Excessive Allocation.This issue affects Admin Audit Trail: from 0.0.0 befor... |
| 6.4 | 2025-06-11 | CVE-2025-5144 | cve | The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-date-*’ parameters in all versions up to, and including, 6.13.2 due to in... |
| 6.4 | 2025-06-11 | CVE-2025-4666 | cve | The Zotpress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nickname’ parameter in all versions up to, and including, 7.3.15 due to insufficient inpu... |
| 4.9 | 2025-06-11 | CVE-2025-4798 | cve | The WP-DownloadManager plugin for WordPress is vulnerable to arbitrary file read in all versions up to, and including, 1.68.10. This is due to a lack of restriction on the direc... |
| 4.3 | 2025-06-10 | CVE-2025-22829 | cve | The CloudStack Quota plugin has an improper privilege management logic in version 4.20.0.0. Anyone with authenticated user-account access in CloudStack 4.20.0.0 environments, wh... |
| 5.4 | 2025-06-10 | CVE-2025-46838 | cve | Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to injec... |
| Page(s) : 1 2 3 4 5 6 7 8 9 10 11 [12] 13 14 15 16 17 18 19 20 21 22 ... | Result(s) : 114970 |
