| Page(s) : 1 ... 1257 1258 1259 1260 1261 1262 1263 1264 1265 1266 [1267] 1268 1269 1270 1271 1272 1273 1274 1275 1276 1277 ... | Result(s) : 327788 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.2 | 2025-01-14 | VU#529659 | VU-CERT | Howyar Reloader UEFI bootloader vulnerable to unsigned software execution |
| 7.5 | 2025-01-14 | VU#952657 | VU-CERT | Rsync contains six vulnerabilities |
| 6.4 | 2025-01-14 | CVE-2024-13323 | cve | The WP Booking Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'booking' shortcode in all versions up to, and includin... |
| 5.3 | 2025-01-14 | CVE-2024-12006 | cve | The W3 Total Cache plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to, and incl... |
| 7.5 | 2025-01-14 | CVE-2024-12008 | cve | The W3 Total Cache plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.8.1 through the publicly exposed debug log file. This makes... |
| 8.5 | 2025-01-14 | CVE-2024-12365 | cve | The W3 Total Cache plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the is_w3tc_admin_page function in all versions up to, ... |
| 6.5 | 2025-01-14 | CVE-2024-11734 | cve | A denial of service vulnerability was found in Keycloak that could allow an administrative user with the right to change realm settings to disrupt the service. This action is do... |
| 4.9 | 2025-01-14 | CVE-2024-11736 | cve | A vulnerability was found in Keycloak. Admin users may have to access sensitive server environment variables and system properties through user-configurable URLs. When configuri... |
| 6.4 | 2025-01-14 | CVE-2024-13156 | cve | The HTML5 Video Player – mp4 Video Player Plugin and Block plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the ‘heading’ parameter in all version... |
| 6.1 | 2025-01-14 | CVE-2025-0393 | cve | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.1006. This is due to missing ... |
| 8.8 | 2025-01-14 | CVE-2025-0394 | cve | The WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type v... |
| 9.8 | 2025-01-14 | CVE-2024-12919 | cve | The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to Authentication Bypass in all versions ... |
| N/A | 2025-01-14 | CVE-2025-20016 | cve | OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340/D440 provided by Y'S corporation. A user with an administrative privilege who logg... |
| N/A | 2025-01-14 | CVE-2025-20055 | cve | OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340 provided by Y'S corporation. An attacker who can access the affected product may e... |
| N/A | 2025-01-14 | CVE-2025-20620 | cve | SQL Injection vulnerability exists in STEALTHONE D220/D340 provided by Y'S corporation. An attacker who can access the affected product may obtain the administrative passwo... |
| 5.3 | 2025-01-14 | CVE-2024-11396 | cve | The Event Monster – Event Management, Tickets Booking, Upcoming Event plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.4.3 via ... |
| N/A | 2025-01-14 | CVE-2024-12083 | cve | Path Traversal Vulnerabilities (CWE-22) exist in NJ/NX-series Machine Automation Controllers. An attacker may use these vulnerabilities to perform unauthorized access and to exe... |
| N/A | 2025-01-14 | CVE-2024-12298 | cve | We found a vulnerability Improper Restriction of XML External Entity Reference (CWE-611) in NB-series NX-Designer. Attackers may be able to abuse this vulnerability to disclose ... |
| N/A | 2025-01-14 | CVE-2024-57615 | cve | An issue in the BATcalcbetween_intern component of MonetDB Server v11.47.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. |
| N/A | 2025-01-14 | CVE-2024-57616 | cve | An issue in the vscanf component of MonetDB Server v11.47.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. |
| Page(s) : 1 ... 1257 1258 1259 1260 1261 1262 1263 1264 1265 1266 [1267] 1268 1269 1270 1271 1272 1273 1274 1275 1276 1277 ... | Result(s) : 327788 |
