| Page(s) : 1 ... 129 130 131 132 133 134 135 136 137 138 [139] 140 141 142 143 144 145 146 147 148 149 ... | Result(s) : 324454 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-06-02 | CVE-2025-44172 | cve | Tenda AC6 V15.03.05.16 was discovered to contain a stack overflow via the time parameter in the setSmartPowerManagement function. |
| N/A | 2025-06-02 | CVE-2024-40112 | cve | A Local File Inclusion (LFI) vulnerability exists in Sitecom WLX-2006 Wall Mount Range Extender N300 v1.5 and before, which allows an attacker to manipulate the "language" cooki... |
| N/A | 2025-06-02 | CVE-2024-40113 | cve | Sitecom WLX-2006 Wall Mount Range Extender N300 v.1.5 and before is vulnerable to Use of Default Credentials. |
| N/A | 2025-06-02 | CVE-2024-40114 | cve | A Cross Site Scripting (XSS) vulnerability in Sitecom WLX-2006 Wall Mount Range Extender N300 v1.5 and before allows an attacker to manipulate the language cookie to inject mali... |
| N/A | 2025-06-02 | CVE-2024-57459 | cve | A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not properly validate user input, allowing... |
| N/A | 2025-06-02 | CVE-2025-44115 | cve | A vulnerability has been found in Cotonti Siena v0.9.25. Affected by this vulnerability is the file /admin.php?m=config&n=edit&o=core&p=title. The manipulation of the value of t... |
| N/A | 2025-06-02 | CVE-2025-45542 | cve | SQL injection vulnerability in the registrationform endpoint of CloudClassroom-PHP-Project v1.0. The pass parameter is vulnerable due to improper input validation, allowing atta... |
| N/A | 2025-06-02 | CVE-2025-48866 | cve | ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Versions prior to 2.9.10 contain a denial of service vulnerability... |
| N/A | 2025-06-02 | CVE-2025-48940 | cve | MyBB is free and open source forum software. Prior to version 1.8.39, the upgrade component does not validate user input properly, which allows attackers to perform local file i... |
| N/A | 2025-06-02 | CVE-2025-48941 | cve | MyBB is free and open source forum software. Prior to version 1.8.39, the search component does not validate permissions correctly, which allows attackers to determine the exist... |
| N/A | 2025-06-02 | CVE-2024-1440 | cve | An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentica... |
| N/A | 2025-06-02 | CVE-2024-3509 | cve | A stored cross-site scripting (XSS) vulnerability exists in the Management Console of multiple WSO2 products due to insufficient input validation in the Rich Text Editor within ... |
| N/A | 2025-06-02 | CVE-2024-7073 | cve | A server-side request forgery (SSRF) vulnerability exists in multiple WSO2 products due to improper input validation in SOAP admin services. This flaw allows unauthenticated att... |
| N/A | 2025-06-02 | CVE-2024-7074 | cve | An arbitrary file upload vulnerability exists in multiple WSO2 products due to improper validation of user input in SOAP admin services. A malicious actor with administrative pr... |
| N/A | 2025-06-02 | CVE-2024-8008 | cve | A reflected cross-site scripting (XSS) vulnerability exists in multiple WSO2 products due to insufficient output encoding in error messages generated by the JDBC user store conn... |
| N/A | 2025-06-02 | CVE-2025-48994 | cve | SignXML is an implementation of the W3C XML Signature standard in Python. When verifying signatures with X509 certificate validation turned off and HMAC shared secret set (`sign... |
| N/A | 2025-06-02 | CVE-2025-48995 | cve | SignXML is an implementation of the W3C XML Signature standard in Python. When verifying signatures with X509 certificate validation turned off and HMAC shared secret set (`sign... |
| N/A | 2025-06-02 | CVE-2025-5036 | cve | A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause... |
| N/A | 2025-06-02 | CVE-2025-1750 | cve | An SQL injection vulnerability exists in the delete function of DuckDBVectorStore in run-llama/llama_index version v0.12.19. This vulnerability allows an attacker to manipulate ... |
| N/A | 2025-06-02 | CVE-2025-3260 | cve | A security vulnerability in the /apis/dashboard.grafana.app/* endpoints allows authenticated users to bypass dashboard and folder permissions. The vulnerability affects all API ... |
| Page(s) : 1 ... 129 130 131 132 133 134 135 136 137 138 [139] 140 141 142 143 144 145 146 147 148 149 ... | Result(s) : 324454 |
