| Page(s) : 1 ... 1424 1425 1426 1427 1428 1429 1430 1431 1432 1433 [1434] 1435 1436 1437 1438 1439 1440 1441 1442 1443 1444 ... | Result(s) : 328771 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2024-12-25 | CVE-2024-12335 | cve | The Avada (Fusion) Builder plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 3.11.12 via the handle_clone_post() function and the ... |
| 9.8 | 2024-12-25 | CVE-2024-52046 | cve | The ObjectSerializationDecoder in Apache MINA uses Java’s native deserialization protocol to process incoming serialized data but lacks the necessary security checks and defense... |
| N/A | 2024-12-25 | CVE-2024-12032 | cve | The Tourfic – Ultimate Hotel Booking, Travel Booking & Apartment Booking WordPress Plugin | WooCommerce Booking plugin for WordPress is vulnerable to SQL Injection via the '... |
| 4.3 | 2024-12-25 | CVE-2024-12190 | cve | The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to unauthorized ac... |
| 8.8 | 2024-12-25 | CVE-2024-12272 | cve | The WP Travel Engine – Elementor Widgets | Create Travel Booking Website Using WordPress and Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions... |
| 5.3 | 2024-12-25 | CVE-2024-12413 | cve | The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several func... |
| N/A | 2024-12-25 | CVE-2024-1609 | cve | In OPPOStore iOS App, there's a possible escalation of privilege due to improper input validation. |
| 7.5 | 2024-12-25 | CVE-2024-12428 | cve | The WP Data Access – App, Table, Form and Chart Builder plugin plugin for WordPress is vulnerable to SQL Injection via the 'order[user_login][dir]' parameter in all ve... |
| 4.3 | 2024-12-25 | CVE-2024-12636 | cve | The Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WP Legal Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up ... |
| N/A | 2024-12-24 | CVE-2019-2483 | cve | Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.... |
| N/A | 2024-12-24 | CVE-2022-21505 | cve | In the linux kernel, if IMA appraisal is used with the "ima_appraise=log" boot param, lockdown can be defeated with kexec on any machine when Secure Boot is disabled or unavaila... |
| N/A | 2024-12-24 | CVE-2024-12744 | cve | A SQL injection in the Amazon Redshift JDBC Driver in v2.1.0.31 allows a user to gain escalated privileges via the getSchemas, getTables, or getColumns Metadata APIs. Users shou... |
| N/A | 2024-12-24 | CVE-2024-12745 | cve | A SQL injection in the Amazon Redshift Python Connector v2.1.4 allows a user to gain escalated privileges via the get_schemas, get_tables, or get_columns Metadata APIs. Users ar... |
| N/A | 2024-12-24 | CVE-2024-12746 | cve | A SQL injection in the Amazon Redshift ODBC Driver v2.1.5.0 (Windows or Linux) allows a user to gain escalated privileges via the SQLTables or SQLColumns Metadata APIs. Users ar... |
| 5.4 | 2024-12-24 | CVE-2024-10584 | cve | The DirectoryPress – Business Directory And Classified Ad Listing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, a... |
| 6.5 | 2024-12-24 | CVE-2024-10856 | cve | The Booking Calendar WpDevArt plugin is vulnerable to time-based, blind SQL injection via the `id` parameter in the “wpdevart_booking_calendar” shortcode in versions up to, and ... |
| 6.5 | 2024-12-24 | CVE-2024-11726 | cve | The Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress plugin for WordPress is vulnerable to SQL Injection via the 'category' parameter of the &#... |
| 5.4 | 2024-12-24 | CVE-2024-12268 | cve | The Responsive Blocks – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'responsive-block-editor-addons/portfolio'... |
| N/A | 2024-12-24 | CVE-2024-43441 | cve | Authentication Bypass by Assumed-Immutable Data vulnerability in Apache HugeGraph-Server. This issue affects Apache HugeGraph-Server: from 1.0.0 before 1.5.0. Users are recomm... |
| 5.5 | 2024-12-24 | CVE-2024-53145 | cve | In the Linux kernel, the following vulnerability has been resolved: um: Fix potential integer overflow during physmem setup This issue happens when the real map size is greate... |
| Page(s) : 1 ... 1424 1425 1426 1427 1428 1429 1430 1431 1432 1433 [1434] 1435 1436 1437 1438 1439 1440 1441 1442 1443 1444 ... | Result(s) : 328771 |
