| Page(s) : 1 ... 1206 1207 1208 1209 1210 1211 1212 1213 1214 1215 [1216] 1217 1218 1219 1220 1221 1222 1223 1224 1225 1226 ... | Result(s) : 301726 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-15 | CVE-2025-0354 | cve | Cross-site scripting vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2... |
| N/A | 2025-01-15 | CVE-2025-0355 | cve | Missing Authentication for Critical Function vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WF1200CRS Ver.1.6.0 and earlier, WG1200CRS Ver.1.5.0 and earl... |
| N/A | 2025-01-15 | CVE-2025-0356 | cve | NEC Corporation Aterm WX1500HP Ver.1.4.2 and earlier and WX3600HP Ver.1.5.3 and earlier allows a attacker to execute arbitrary OS commands via the network. |
| 4.3 | 2025-01-15 | CVE-2024-10775 | cve | The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.4.32 via the 'pafe-template' shortc... |
| N/A | 2025-01-15 | CVE-2024-12297 | cve | Moxa’s Ethernet switch is vulnerable to an authentication bypass because of flaws in its authorization mechanism. Although both client-side and back-end server verification are ... |
| 6.1 | 2025-01-15 | CVE-2024-12403 | cve | The Image Gallery – Responsive Photo Gallery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'awsmgallery' parameter in all versions up to... |
| 6.1 | 2025-01-15 | CVE-2024-12423 | cve | The Contact Form 7 Redirect & Thank You Page plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'post' parameter in all versions up to, and i... |
| 6.4 | 2025-01-15 | CVE-2024-12818 | cve | The WP Smart TV plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tv-video-player' shortcode in all versions up to, and includin... |
| 7.2 | 2025-01-15 | CVE-2024-13351 | cve | The Social proof testimonials and reviews by Repuso plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rw_image_badge1' shortcode... |
| 9.8 | 2025-01-15 | CVE-2024-9636 | cve | The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in versions 2.2.85 to 2.3.3. This is due to the plugin not properly restricting wha... |
| N/A | 2025-01-15 | CVE-2025-0343 | cve | Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects... |
| 6.1 | 2025-01-15 | CVE-2024-13334 | cve | The Car Demon plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'search_condition' parameter in all versions up to, and including, 1.8.1 due... |
| N/A | 2025-01-15 | CVE-2025-23013 | cve | In Yubico pam-u2f before 1.3.1, local privilege escalation can sometimes occur. This product implements a Pluggable Authentication Module (PAM) that can be deployed to support a... |
| 6.3 | 2025-01-15 | CVE-2025-21101 | cve | Dell Display Manager, versions prior to 2.3.2.20, contain a race condition vulnerability. A local malicious user could potentially exploit this vulnerability during installation... |
| 7 | 2025-01-15 | CVE-2025-22394 | cve | Dell Display Manager, versions prior to 2.3.2.18, contain a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability. A low privileged attacker with local access could po... |
| N/A | 2025-01-15 | CVE-2025-23061 | cve | Mongoose before 8.9.5 can improperly use a nested $where filter with a populate() match, leading to search injection. NOTE: this issue exists because of an incomplete fix for CV... |
| N/A | 2025-01-15 | CVE-2024-57757 | cve | JeeWMS before v2025.01.01 was discovered to contain a permission bypass in the component /interceptors/AuthInterceptor.cava. |
| N/A | 2025-01-15 | CVE-2024-57760 | cve | JeeWMS before v2025.01.01 was discovered to contain a SQL injection vulnerability via the ReportId parameter at /core/CGReportDao.java. |
| N/A | 2025-01-15 | CVE-2024-57761 | cve | An arbitrary file upload vulnerability in the parserXML() method of JeeWMS before v2025.01.01 allows attackers to execute arbitrary code via uploading a crafted file. |
| N/A | 2025-01-15 | CVE-2024-57762 | cve | MSFM before v2025.01.01 was discovered to contain a deserialization vulnerability via the pom.xml configuration file. |
| Page(s) : 1 ... 1206 1207 1208 1209 1210 1211 1212 1213 1214 1215 [1216] 1217 1218 1219 1220 1221 1222 1223 1224 1225 1226 ... | Result(s) : 301726 |
