| Page(s) : 1 ... 1328 1329 1330 1331 1332 1333 1334 1335 1336 1337 [1338] 1339 1340 1341 1342 1343 1344 1345 1346 1347 1348 ... | Result(s) : 328055 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-01-07 | CVE-2024-12457 | cve | The Chat Support for Viber – Chat Bubble and Chat Button for Gutenberg, Elementor and Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin&... |
| 6.4 | 2025-01-07 | CVE-2024-12462 | cve | The YOGO Booking plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'yogo-calendar' shortcode in all versions up to, and including... |
| 9.8 | 2025-01-07 | CVE-2024-12470 | cve | The School Management System – SakolaWP plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.0.8. This is due to the registration f... |
| 6.1 | 2025-01-07 | CVE-2024-9208 | cve | The Enable Accessibility plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on ... |
| N/A | 2025-01-06 | CVE-2024-54764 | cve | An access control issue in the component /login/hostinfo2.cgi of ipTIME A2004 v12.17.0 allows attackers to obtain sensitive information without authentication. |
| N/A | 2025-01-06 | CVE-2024-54767 | cve | An access control issue in the component /juis_boxinfo.xml of AVM FRITZ!Box 7530 AX v7.59 allows attackers to obtain sensitive information without authentication. NOTE: this is ... |
| N/A | 2025-01-06 | CVE-2024-55553 | cve | In FRRouting (FRR) before 10.3 from 6.0 onward, all routes are re-validated if the total size of an update received via RTR exceeds the internal socket's buffer size, defau... |
| N/A | 2025-01-06 | CVE-2025-21620 | cve | Deno is a JavaScript, TypeScript, and WebAssembly runtime with secure defaults. When you send a request with the Authorization header to one domain, and the response asks to red... |
| N/A | 2025-01-06 | CVE-2024-35498 | cve | A cross-site scripting (XSS) vulnerability in Grav v1.7.45 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. |
| N/A | 2025-01-06 | CVE-2024-46209 | cve | A stored cross-site scripting (XSS) vulnerability in the component /media/test.html of REDAXO CMS v5.17.1 allows attackers to execute arbitrary web scripts or HTML via injecting... |
| N/A | 2025-01-06 | CVE-2024-55407 | cve | An issue in the DeviceloControl function of ITE Tech. Inc ITE IO Access v1.0.0.0 allows attackers to perform arbitrary port read and write actions via supplying crafted IOCTL re... |
| N/A | 2025-01-06 | CVE-2024-55408 | cve | An improper access control vulnerability in the AsusSAIO.sys driver may lead to the misuse of software functionality utilizing the driver when crafted IOCTL requests are supplied. |
| N/A | 2025-01-06 | CVE-2024-55074 | cve | The edit profile function of Grocy through 4.3.0 allows stored XSS and resultant privilege escalation by uploading a crafted HTML or SVG file, a different issue than CVE-2024-8370. |
| N/A | 2025-01-06 | CVE-2025-21617 | cve | Guzzle OAuth Subscriber signs Guzzle requests using OAuth 1.0. Prior to 0.8.1, Nonce generation does not use sufficient entropy nor a cryptographically secure pseudorandom sourc... |
| N/A | 2025-01-06 | CVE-2024-55075 | cve | Grocy through 4.3.0 allows remote attackers to obtain sensitive information via direct requests to pages that are not shown in the UI, such as calendar and recipes. |
| N/A | 2025-01-06 | CVE-2024-55076 | cve | Grocy through 4.3.0 has no CSRF protection, as demonstrated by changing the Administrator's password. |
| N/A | 2025-01-06 | CVE-2021-27285 | cve | An issue was discovered in Inspur ClusterEngine v4.0 that allows attackers to gain escalated Local privileges and execute arbitrary commands via /opt/tsce4/torque6/bin/getJobsBy... |
| N/A | 2025-01-06 | CVE-2024-46981 | cve | Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to manipulate the garbage collector and potential... |
| N/A | 2025-01-06 | CVE-2024-48455 | cve | An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0.0.3749 and Netis Wifi 11AC Router NC63 3.0.0.3327 and 3.0.0.3503 and Netis Wifi... |
| N/A | 2025-01-06 | CVE-2024-48456 | cve | An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0.0.3749 and Netis Wifi 11AC Router NC63 3.0.0.3327 and 3.0.0.3503 and Netis Wifi... |
| Page(s) : 1 ... 1328 1329 1330 1331 1332 1333 1334 1335 1336 1337 [1338] 1339 1340 1341 1342 1343 1344 1345 1346 1347 1348 ... | Result(s) : 328055 |
