| Page(s) : 1 ... 1194 1195 1196 1197 1198 1199 1200 1201 1202 1203 [1204] 1205 1206 1207 1208 1209 1210 1211 1212 1213 1214 ... | Result(s) : 301689 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-01-16 | CVE-2025-0456 | cve | The airPASS from NetVision Information has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access the specific administrative functionality ... |
| 8.8 | 2025-01-16 | CVE-2025-0457 | cve | The airPASS from NetVision Information has an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject and execute arbitrary OS commands. |
| N/A | 2025-01-16 | CVE-2025-22904 | cve | RE11S v1.11 was discovered to contain a stack overflow via the pptpUserName parameter in the setWAN function. |
| N/A | 2025-01-16 | CVE-2025-22905 | cve | RE11S v1.11 was discovered to contain a command injection vulnerability via the command parameter at /goform/mp. |
| N/A | 2025-01-16 | CVE-2025-22906 | cve | RE11S v1.11 was discovered to contain a command injection vulnerability via the L2TPUserName parameter at /goform/setWAN. |
| N/A | 2025-01-16 | CVE-2025-22907 | cve | RE11S v1.11 was discovered to contain a stack overflow via the selSSID parameter in the formWlSiteSurvey function. |
| N/A | 2025-01-16 | CVE-2025-22912 | cve | RE11S v1.11 was discovered to contain a command injection vulnerability via the component /goform/formAccept. |
| N/A | 2025-01-16 | CVE-2025-22913 | cve | RE11S v1.11 was discovered to contain a stack overflow via the rootAPmac parameter in the formStaDrvSetup function. |
| N/A | 2025-01-16 | CVE-2025-22916 | cve | RE11S v1.11 was discovered to contain a stack overflow via the pppUserName parameter in the formPPPoESetup function. |
| 4.3 | 2025-01-16 | CVE-2024-10789 | cve | The WP User Profile Avatar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.5. This is due to missing or incorrect nonc... |
| 6.4 | 2025-01-16 | CVE-2024-11452 | cve | The Chamber Dashboard Business Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'business_categories' shortcode in all... |
| N/A | 2025-01-16 | CVE-2021-35684 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2022-21306. |
| N/A | 2025-01-16 | CVE-2021-35685 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2022-21371 |
| N/A | 2025-01-16 | CVE-2022-21384 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2021-39275. |
| N/A | 2025-01-16 | CVE-2025-0476 | cve | Mattermost Mobile Apps versions |
| N/A | 2025-01-15 | CVE-2024-39967 | cve | Insecure permissions in Aginode GigaSwitch v5 allows attackers to access sensitive information via using the SCP command. |
| N/A | 2025-01-15 | CVE-2024-41453 | cve | A cross-site scripting (XSS) vulnerability in Process Maker pm4core-docker 4.1.21-RC7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected in... |
| N/A | 2025-01-15 | CVE-2024-41454 | cve | An arbitrary file upload vulnerability in the UI login page logo upload function of Process Maker pm4core-docker 4.1.21-RC7 allows attackers to execute arbitrary code via upload... |
| 3.3 | 2025-01-15 | CVE-2024-53407 | cve | In Phiewer 4.1.0, a dylib injection leads to Command Execution which allow attackers to inject dylib file potentially leading to remote control and unauthorized access to sensit... |
| 3.3 | 2025-01-15 | CVE-2024-55503 | cve | An issue in termius before v.9.9.0 allows a local attacker to execute arbitrary code via a crafted script to the DYLD_INSERT_LIBRARIES component. |
| Page(s) : 1 ... 1194 1195 1196 1197 1198 1199 1200 1201 1202 1203 [1204] 1205 1206 1207 1208 1209 1210 1211 1212 1213 1214 ... | Result(s) : 301689 |
