| Page(s) : 1 ... 1251 1252 1253 1254 1255 1256 1257 1258 1259 1260 [1261] 1262 1263 1264 1265 1266 1267 1268 1269 1270 1271 ... | Result(s) : 301836 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-10 | CVE-2024-54687 | cve | Vtiger CRM v.6.1 and before is vulnerable to Cross Site Scripting (XSS) via the Documents module and function uploadAndSaveFile in CRMEntity.php. |
| N/A | 2025-01-10 | CVE-2024-57222 | cve | Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_cancel_wps function. |
| N/A | 2025-01-10 | CVE-2024-57223 | cve | Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_wps_gen_pincode function. |
| N/A | 2025-01-10 | CVE-2024-57224 | cve | Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pin_wps function. |
| N/A | 2025-01-10 | CVE-2024-57225 | cve | Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the devname parameter in the reset_wifi function. |
| N/A | 2025-01-10 | CVE-2024-57226 | cve | Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the iface parameter in the vif_enable function. |
| N/A | 2025-01-10 | CVE-2024-57227 | cve | Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pbc_wps function. |
| N/A | 2025-01-10 | CVE-2024-57228 | cve | Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the iface parameter in the vif_disable function. |
| N/A | 2025-01-10 | CVE-2024-6662 | cve | Websites managed by MegaBIP in versions below 5.15 are vulnerable to Cross-Site Request Forgery (CSRF) as the form available under "/edytor/index.php?id=7,7,0" lacks protection ... |
| N/A | 2025-01-10 | CVE-2024-6880 | cve | During MegaBIP installation process, a user is encouraged to change a default path to administrative portal, as keeping it secret is listed by the author as one of the protectio... |
| N/A | 2025-01-10 | CVE-2025-23078 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - Breadcrumbs2 extension al... |
| 5.3 | 2025-01-10 | CVE-2024-13318 | cve | The Essential WP Real Estate plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the cl_delete_listing_func() function in all versions... |
| N/A | 2025-01-10 | CVE-2025-23016 | cve | FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based buffer overflow) via crafted nameLen or valueLen values in data to the IPC socket. T... |
| N/A | 2025-01-10 | CVE-2024-57822 | cve | In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buffer over-read when parsing triples with the nquads parser in raptor_ntriples_parse_term_internal(). |
| N/A | 2025-01-10 | CVE-2024-57823 | cve | In Raptor RDF Syntax Library through 2.0.16, there is an integer underflow when normalizing a URI with the turtle parser in raptor_uri_normalize_path(). |
| 9.8 | 2025-01-10 | CVE-2024-41787 | cve | IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 could allow a remote attacker to bypass security restrictions, caused by a race condition. By sending a specia... |
| N/A | 2025-01-10 | CVE-2024-57686 | cve | A Cross Site Scripting (XSS) vulnerability was found in /landrecordsys/admin/contactus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitr... |
| N/A | 2025-01-10 | CVE-2024-57687 | cve | An OS Command Injection vulnerability was found in /landrecordsys/admin/dashboard.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary c... |
| 5.4 | 2025-01-10 | CVE-2025-0311 | cve | The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Pricing Table widget in all versions up to, and including, 2.1... |
| 5.4 | 2025-01-10 | CVE-2024-13183 | cve | The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title_tag’ parameter in all versions up to, and including, 2.10.43 due to i... |
| Page(s) : 1 ... 1251 1252 1253 1254 1255 1256 1257 1258 1259 1260 [1261] 1262 1263 1264 1265 1266 1267 1268 1269 1270 1271 ... | Result(s) : 301836 |
