| Page(s) : 1 ... 125 126 127 128 129 130 131 132 133 134 [135] 136 137 138 139 140 141 142 143 144 145 ... | Result(s) : 298695 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-05-30 | CVE-2025-48482 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, there is a mass assignment vulnerability. The Customer object is updated using the fill()... |
| 5.4 | 2025-05-30 | CVE-2025-48483 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect inpu... |
| 5.4 | 2025-05-30 | CVE-2025-48484 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.178, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect inpu... |
| N/A | 2025-05-30 | CVE-2025-41235 | cve | Spring Cloud Gateway Server forwards the X-Forwarded-For and Forwarded headers from untrusted proxies. |
| N/A | 2025-05-30 | CVE-2025-48490 | cve | Laravel Rest Api is an API generator. Prior to version 2.13.0, a validation bypass vulnerability was discovered where multiple validations defined for the same attribute could b... |
| N/A | 2025-05-30 | CVE-2025-48881 | cve | Valtimo is a platform for Business Process Automation. In versions starting from 11.0.0.RELEASE to 11.3.3.RELEASE and 12.0.0.RELEASE to 12.12.0.RELEASE, all objects for which an... |
| N/A | 2025-05-30 | CVE-2025-48889 | cve | Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Prior to vers... |
| N/A | 2025-05-30 | CVE-2025-4429 | cve | The Gearside Developer Dashboard WordPress plugin through 1.0.72 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Sit... |
| 5.3 | 2025-05-30 | CVE-2025-4659 | cve | The Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, ... |
| 6.4 | 2025-05-30 | CVE-2025-5259 | cve | The Minimal Share Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘align’ parameter in all versions up to, and including, 1.7.3 due to insuffic... |
| 7.2 | 2025-05-30 | CVE-2025-41385 | cve | An OS Command Injection issue exists in wivia 5 all versions. If this vulnerability is exploited, an arbitrary OS command may be executed by a logged-in administrative user. |
| 6.1 | 2025-05-30 | CVE-2025-41406 | cve | Cross-site scripting vulnerability exists in wivia 5 all versions. If exploited, when a user connects to the affected device with a specific operation, an arbitrary script may b... |
| 7.5 | 2025-05-30 | CVE-2025-47697 | cve | Client-side enforcement of server-side security issue exists in wivia 5 all versions. If exploited, an unauthenticated attacker may bypass authentication and operate the affecte... |
| 5.4 | 2025-05-30 | CVE-2025-48485 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect inpu... |
| 5.4 | 2025-05-30 | CVE-2025-48486 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the cross-site scripiting (XSS) vulnerability is caused by the lack of input validation a... |
| 4.8 | 2025-05-30 | CVE-2025-48487 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, when creating a translation of a phrase that appears in a flash-message after a completed... |
| 5.4 | 2025-05-30 | CVE-2025-48488 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, deleting the file .htaccess allows an attacker to upload an HTML file containing maliciou... |
| 4.8 | 2025-05-30 | CVE-2025-48489 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to insufficient d... |
| 8.8 | 2025-05-30 | CVE-2025-48492 | cve | GetSimple CMS is a content management system. In versions starting from 3.3.16 to 3.3.21, an authenticated user with access to the Edit component can inject arbitrary PHP into a... |
| 9.1 | 2025-05-30 | CVE-2025-48865 | cve | Fabio is an HTTP(S) and TCP router for deploying applications managed by consul. Prior to version 1.6.6, Fabio allows clients to remove X-Forwarded headers (except X-Forwarded-F... |
| Page(s) : 1 ... 125 126 127 128 129 130 131 132 133 134 [135] 136 137 138 139 140 141 142 143 144 145 ... | Result(s) : 298695 |
