| Page(s) : 1 ... 1448 1449 1450 1451 1452 1453 1454 1455 1456 1457 [1458] 1459 1460 1461 1462 1463 1464 1465 1466 1467 1468 ... | Result(s) : 328784 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2024-12-18 | CVE-2024-12061 | cve | The Events Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.2.3 via the naevents_elementor_template shortco... |
| 5.3 | 2024-12-18 | CVE-2024-12250 | cve | The Accept Authorize.NET Payments Using Contact Form 7 plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.2 via the cf7adn-info.p... |
| 8.8 | 2024-12-18 | CVE-2024-12259 | cve | The CRM WordPress Plugin – RepairBuddy plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.8120. This is due ... |
| 8.1 | 2024-12-18 | CVE-2024-12432 | cve | The WPC Shop as a Customer for WooCommerce plugin for WordPress is vulnerable to account takeover and privilege escalation in all versions up to, and including, 1.2.8. This is d... |
| 6.4 | 2024-12-18 | CVE-2024-12449 | cve | The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisper_player_html�... |
| 4.3 | 2024-12-18 | CVE-2024-12596 | cve | The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to arbitrary post deletion due to a missing capability check on the 'llms... |
| N/A | 2024-12-18 | CVE-2024-12698 | cve | An incomplete fix for ose-olm-catalogd-container was issued for the Rapid Reset Vulnerability (CVE-2023-39325/CVE-2023-44487) where only unauthenticated streams were protected, ... |
| N/A | 2024-12-18 | CVE-2024-56169 | cve | A validation integrity issue was discovered in Fort through 1.6.4 before 2.0.0. RPKI Relying Parties (such as Fort) are supposed to maintain a backup cache of the remote RPKI da... |
| N/A | 2024-12-18 | CVE-2024-56170 | cve | A validation integrity issue was discovered in Fort through 1.6.4 before 2.0.0. RPKI manifests are listings of relevant files that clients are supposed to verify. Assuming every... |
| 5.7 | 2024-12-17 | CVE-2024-10973 | cve | A vulnerability was found in Keycloak. The environment option `KC_CACHE_EMBEDDED_MTLS_ENABLED` does not work and the JGroups replication configuration is always used in plain te... |
| 7.5 | 2024-12-17 | CVE-2024-9779 | cve | A flaw was found in Open Cluster Management (OCM) when a user has access to the worker nodes which contain the cluster-manager or klusterlet deployments. The cluster-manager dep... |
| N/A | 2024-12-17 | CVE-2024-51479 | cve | Next.js is a React framework for building full-stack web applications. In affected versions if a Next.js application is performing authorization in middleware based on pathname,... |
| N/A | 2024-12-17 | CVE-2024-56139 | cve | pdftools is a high level tools to convert PDF files to ePUB formats. In versions up to and including 0.5.0 maliciously crafted epub files can cause a stack overflow leading to a... |
| N/A | 2024-12-17 | CVE-2024-49194 | cve | Databricks JDBC Driver 2.x before 2.6.40 could potentially allow remote code execution (RCE) by triggering a JNDI injection via a JDBC URL parameter. The vulnerability is rooted... |
| N/A | 2024-12-17 | CVE-2024-55513 | cve | A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /upload_netaction.php on the web interface. By crafti... |
| N/A | 2024-12-17 | CVE-2024-55514 | cve | A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /upload_sfmig.php on the web interface. By crafting a... |
| N/A | 2024-12-17 | CVE-2024-55515 | cve | A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /upload_ipslib.php on the web interface. By crafting ... |
| N/A | 2024-12-17 | CVE-2024-55516 | cve | A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 v3.90. The component affected by this issue is /upload_sysconfig.php on the web interface. By craft... |
| 6.1 | 2024-12-17 | CVE-2024-11993 | cve | Reflected cross-site scripting (XSS) vulnerability in Liferay Portal 7.4.0 through 7.4.3.38, and Liferay DXP 7.4 GA through update 38 allows remote attackers to execute arbitrar... |
| 6.5 | 2024-12-17 | CVE-2024-12539 | cve | An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security in Elasticsearch ... |
| Page(s) : 1 ... 1448 1449 1450 1451 1452 1453 1454 1455 1456 1457 [1458] 1459 1460 1461 1462 1463 1464 1465 1466 1467 1468 ... | Result(s) : 328784 |
