| Page(s) : 1 ... 1446 1447 1448 1449 1450 1451 1452 1453 1454 1455 [1456] 1457 1458 1459 1460 1461 1462 1463 1464 1465 1466 ... | Result(s) : 328784 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-12-18 | CVE-2024-55983 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Derek Hamilton PowerFormBuilder allows SQL Injection.This issue a... |
| N/A | 2024-12-18 | CVE-2024-55984 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in susheelhbti Saksh Escrow System allows SQL Injection.This issue a... |
| N/A | 2024-12-18 | CVE-2024-55985 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ydesignservices YDS Support Ticket System allows SQL Injection.Th... |
| N/A | 2024-12-18 | CVE-2024-55997 | cve | Missing Authorization vulnerability in Web Chunky Order Delivery & Pickup Location Date Time allows Exploiting Incorrectly Configured Access Control Security Levels.This issue a... |
| N/A | 2024-12-18 | CVE-2024-56008 | cve | Missing Authorization vulnerability in spreadr Spreadr Woocommerce allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Spreadr Woocommerce: from n... |
| N/A | 2024-12-18 | CVE-2024-56010 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pierre Lannoy / PerfOps One Device Detector allows Reflected XSS.... |
| N/A | 2024-12-18 | CVE-2024-56016 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPTooling Image Mapper allows Reflected XSS.This issue affects Im... |
| N/A | 2024-12-18 | CVE-2024-56058 | cve | Deserialization of Untrusted Data vulnerability in Gueststream VRPConnector allows Object Injection.This issue affects VRPConnector: from n/a through 2.0.1. |
| N/A | 2024-12-18 | CVE-2024-56059 | cve | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') vulnerability in Mighty Digital Partners allows Object Injection.This issue a... |
| N/A | 2024-12-18 | CVE-2023-34990 | cve | A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specially crafted... |
| N/A | 2024-12-18 | CVE-2024-48889 | cve | An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiManager version 7.6.0, version 7.4.4 and b... |
| N/A | 2024-12-18 | CVE-2024-50570 | cve | A Cleartext Storage of Sensitive Information vulnerability [CWE-312] in FortiClientWindows 7.4.0 through 7.4.1, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13 and FortiClientLinux 7.... |
| N/A | 2024-12-18 | CVE-2024-56128 | cve | Incorrect Implementation of Authentication Algorithm in Apache Kafka's SCRAM implementation. Issue Summary: Apache Kafka's implementation of the Salted Challenge Resp... |
| N/A | 2024-12-18 | CVE-2024-10892 | cve | The Cost Calculator Builder WordPress plugin before 3.2.43 does not have CSRF checks in some AJAX actions, which could allow attackers to make logged in users perform unwanted a... |
| N/A | 2024-12-18 | CVE-2024-21546 | cve | Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution (RCE) through using a valid mimetype and inserting the . character afte... |
| N/A | 2024-12-18 | CVE-2024-21547 | cve | Versions of the package spatie/browsershot before 5.0.2 are vulnerable to Directory Traversal due to URI normalisation in the browser where the file:// check can be bypassed wit... |
| N/A | 2024-12-18 | CVE-2024-21548 | cve | Versions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability t... |
| N/A | 2024-12-18 | CVE-2024-4464 | cve | Authorization bypass through user-controlled key vulnerability in streaming service in Synology Media Server before 1.4-2680, 2.0.5-3152 and 2.2.0-3325 allows remote attackers t... |
| N/A | 2024-12-18 | CVE-2024-56173 | cve | In Optimizely Configured Commerce before 5.2.2408, malicious payloads can be stored and subsequently executed in users' browsers under specific conditions: XSS from JavaScr... |
| N/A | 2024-12-18 | CVE-2024-56174 | cve | In Optimizely Configured Commerce before 5.2.2408, malicious payloads can be stored and subsequently executed in users' browsers under specific conditions: XSS from client-... |
| Page(s) : 1 ... 1446 1447 1448 1449 1450 1451 1452 1453 1454 1455 [1456] 1457 1458 1459 1460 1461 1462 1463 1464 1465 1466 ... | Result(s) : 328784 |
