| Page(s) : 1 ... 1236 1237 1238 1239 1240 1241 1242 1243 1244 1245 [1246] 1247 1248 1249 1250 1251 1252 1253 1254 1255 1256 ... | Result(s) : 327777 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-01-15 | CVE-2024-12818 | cve | The WP Smart TV plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tv-video-player' shortcode in all versions up to, and includin... |
| 7.2 | 2025-01-15 | CVE-2024-13351 | cve | The Social proof testimonials and reviews by Repuso plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rw_image_badge1' shortcode... |
| 9.8 | 2025-01-15 | CVE-2024-9636 | cve | The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in versions 2.2.85 to 2.3.3. This is due to the plugin not properly restricting wha... |
| N/A | 2025-01-15 | CVE-2025-0343 | cve | Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects... |
| 6.1 | 2025-01-15 | CVE-2024-13334 | cve | The Car Demon plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'search_condition' parameter in all versions up to, and including, 1.8.1 due... |
| N/A | 2025-01-15 | CVE-2025-23013 | cve | In Yubico pam-u2f before 1.3.1, local privilege escalation can sometimes occur. This product implements a Pluggable Authentication Module (PAM) that can be deployed to support a... |
| 6.3 | 2025-01-15 | CVE-2025-21101 | cve | Dell Display Manager, versions prior to 2.3.2.20, contain a race condition vulnerability. A local malicious user could potentially exploit this vulnerability during installation... |
| 7 | 2025-01-15 | CVE-2025-22394 | cve | Dell Display Manager, versions prior to 2.3.2.18, contain a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability. A low privileged attacker with local access could po... |
| N/A | 2025-01-15 | CVE-2025-23061 | cve | Mongoose before 8.9.5 can improperly use a nested $where filter with a populate() match, leading to search injection. NOTE: this issue exists because of an incomplete fix for CV... |
| N/A | 2025-01-15 | CVE-2024-57757 | cve | JeeWMS before v2025.01.01 was discovered to contain a permission bypass in the component /interceptors/AuthInterceptor.cava. |
| N/A | 2025-01-15 | CVE-2024-57760 | cve | JeeWMS before v2025.01.01 was discovered to contain a SQL injection vulnerability via the ReportId parameter at /core/CGReportDao.java. |
| N/A | 2025-01-15 | CVE-2024-57761 | cve | An arbitrary file upload vulnerability in the parserXML() method of JeeWMS before v2025.01.01 allows attackers to execute arbitrary code via uploading a crafted file. |
| N/A | 2025-01-15 | CVE-2024-57762 | cve | MSFM before v2025.01.01 was discovered to contain a deserialization vulnerability via the pom.xml configuration file. |
| N/A | 2025-01-15 | CVE-2024-57763 | cve | MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the component system/table/addField. |
| N/A | 2025-01-15 | CVE-2024-57764 | cve | MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the component system/table/add. |
| N/A | 2025-01-15 | CVE-2024-57765 | cve | MSFM before 2025.01.01 was discovered to contain a SQL injection vulnerability via the s_name parameter at table/list. |
| N/A | 2025-01-15 | CVE-2024-57766 | cve | MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the component system/table/editField. |
| N/A | 2025-01-15 | CVE-2024-57767 | cve | MSFM before v2025.01.01 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /file/download. |
| N/A | 2025-01-15 | CVE-2025-22996 | cve | A stored cross-site scripting (XSS) vulnerability in the spf_table_content component of Linksys E5600 Router Ver. 1.1.0.26 allows attackers to execute arbitrary web scripts or H... |
| N/A | 2025-01-15 | CVE-2025-22997 | cve | A stored cross-site scripting (XSS) vulnerability in the prf_table_content component of Linksys E5600 Router Ver. 1.1.0.26 allows attackers to execute arbitrary web scripts or H... |
| Page(s) : 1 ... 1236 1237 1238 1239 1240 1241 1242 1243 1244 1245 [1246] 1247 1248 1249 1250 1251 1252 1253 1254 1255 1256 ... | Result(s) : 327777 |
