Page(s) : 1 ... 4 5 6 7 8 9 10 11 12 13 [14] 15 16 17 18 19 20 21 22 23 24 ... | Result(s) : 301664 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
N/A | 2025-07-10 | CVE-2024-47252 | cve | Insufficient escaping of user-supplied data in mod_ssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in ... |
N/A | 2025-07-10 | CVE-2025-23048 | cve | In some mod_ssl configurations on Apache HTTP Server 2.4.35 through to 2.4.63, an access control bypass by trusted clients is possible using TLS 1.3 session resumption. Configu... |
N/A | 2025-07-10 | CVE-2025-27889 | cve | Wing FTP Server before 7.4.4 does not properly validate and sanitize the url parameter of the downloadpass.html endpoint, allowing injection of an arbitrary link. If a user clic... |
N/A | 2025-07-10 | CVE-2025-47811 | cve | In Wing FTP Server through 7.4.4, the administrative web interface (listening by default on port 5466) runs as root or SYSTEM by default. The web application itself offers sever... |
N/A | 2025-07-10 | CVE-2025-47812 | cve | In Wing FTP Server before 7.4.4. the user and admin web interfaces mishandle '\0' bytes, ultimately allowing injection of arbitrary Lua code into user session files. T... |
N/A | 2025-07-10 | CVE-2025-47813 | cve | loginok.html in Wing FTP Server before 7.4.4 discloses the full local installation path of the application when using a long value in the UID cookie. |
N/A | 2025-07-10 | CVE-2025-49462 | cve | Cross-site scripting in certain Zoom Clients before version 6.4.5 may allow an authenticated user to conduct a disclosure of information via network access. |
N/A | 2025-07-10 | CVE-2025-49463 | cve | Insufficient control flow management in certain Zoom Clients for iOS before version 6.4.5 may allow an unauthenticated user to conduct a disclosure of information via network ac... |
N/A | 2025-07-10 | CVE-2025-49464 | cve | Classic buffer overflow in certain Zoom Clients for Windows may allow an authorised user to conduct a denial of service via network access. |
N/A | 2025-07-10 | CVE-2025-49630 | cve | In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an asserti... |
N/A | 2025-07-10 | CVE-2025-49812 | cve | In some mod_ssl configurations on Apache HTTP Server versions through to 2.4.63, an HTTP desynchronisation attack allows a man-in-the-middle attacker to hijack an HTTP session v... |
N/A | 2025-07-10 | CVE-2025-53020 | cve | Late Release of Memory after Effective Lifetime vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: from 2.4.17 up to 2.4.63. Users are recommended to ... |
N/A | 2025-07-10 | CVE-2025-7409 | cve | A vulnerability was found in code-projects Mobile Shop 1.0 and classified as critical. This issue affects some unknown processing of the file /LoginAsAdmin.php. The manipulation... |
N/A | 2025-07-10 | CVE-2025-7410 | cve | A vulnerability was found in code-projects LifeStyle Store 1.0. It has been classified as critical. Affected is an unknown function of the file /cart_remove.php. The manipulatio... |
N/A | 2025-07-10 | CVE-2024-7650 | cve | Improper Control of Generation of Code ('Code Injection') vulnerability in OpenTextâ„¢ Directory Services allows Remote Code Inclusion. The vulnerability could allow acc... |
6.5 | 2025-07-10 | CVE-2025-32990 | cve | A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a templa... |
7.8 | 2025-07-10 | CVE-2025-5037 | cve | A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arb... |
7.8 | 2025-07-10 | CVE-2025-5040 | cve | A maliciously crafted RTE file, when parsed through Autodesk Revit, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a c... |
N/A | 2025-07-10 | CVE-2025-6211 | cve | A vulnerability in the DocugamiReader class of the run-llama/llama_index repository, up to version 0.12.28, involves the use of MD5 hashing to generate IDs for document chunks. ... |
N/A | 2025-07-10 | CVE-2025-6234 | cve | The Hostel WordPress plugin before 1.1.5.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which coul... |
Page(s) : 1 ... 4 5 6 7 8 9 10 11 12 13 [14] 15 16 17 18 19 20 21 22 23 24 ... | Result(s) : 301664 |