| Page(s) : 1 ... 1451 1452 1453 1454 1455 1456 1457 1458 1459 1460 [1461] 1462 1463 1464 1465 1466 1467 1468 1469 1470 1471 ... | Result(s) : 328784 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.1 | 2024-12-17 | CVE-2024-12395 | cve | The WooCommerce Additional Fees On Checkout (Free) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘number’ parameter in all versions up to, and inc... |
| 5.3 | 2024-12-17 | CVE-2024-12601 | cve | The Calculated Fields Form plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 5.2.63. This is due to unlimited height and width parame... |
| 5.5 | 2024-12-17 | CVE-2024-52542 | cve | Dell AppSync, version 4.6.0.x, contain a Symbolic Link (Symlink) Following vulnerability. A low privileged attacker with local access could potentially exploit this vulnerabilit... |
| 4.3 | 2024-12-17 | CVE-2024-8429 | cve | Improper Restriction of Excessive Authentication Attempts vulnerability in Digital Operation Services WiFiBurada allows Use of Known Domain Credentials.This issue affects WiFiBu... |
| 6.5 | 2024-12-17 | CVE-2024-8475 | cve | Authentication Bypass by Assumed-Immutable Data vulnerability in Digital Operation Services WiFiBurada allows Manipulating User-Controlled Variables.This issue affects WiFiBurad... |
| 3.7 | 2024-12-17 | CVE-2024-9654 | cve | The Easy Digital Downloads plugin for WordPress is vulnerable to Improper Authorization in versions 3.1 through 3.3.4. This is due to a lack of sufficient validation checks with... |
| 4.3 | 2024-12-17 | CVE-2024-10356 | cve | The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.4.8 in inc/Widgets/accordion/... |
| N/A | 2024-12-17 | CVE-2024-50379 | cve | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability during JSP compilation in Apache Tomcat permits an RCE on case insensitive file systems when the default servlet ... |
| N/A | 2024-12-17 | CVE-2024-54677 | cve | Uncontrolled Resource Consumption vulnerability in the examples web application provided with Apache Tomcat leads to denial of service. This issue affects Apache Tomcat: from 1... |
| 6.5 | 2024-12-17 | CVE-2024-9819 | cve | Authorization Bypass Through User-Controlled Key vulnerability in NextGeography NG Analyser allows Functionality Misuse.This issue affects NG Analyser: before 2.2.711. |
| 9.8 | 2024-12-17 | CVE-2024-8972 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mobil365 Informatics Saha365 App allows SQL Injection.This issue ... |
| N/A | 2024-12-17 | CVE-2024-38499 | cve | CA Client Automation (ITCM) allows non-admin/non-root users to encrypt a string using CAF CLI and SD_ACMD CLI. This would allow the non admin user to access the critical encrypt... |
| N/A | 2024-12-17 | CVE-2024-54125 | cve | Improper authorization in handler for custom URL scheme issue in "Shonen Jump+" App for Android versions prior to 4.0.0 allows an attacker to lead a user to access an arbitrary ... |
| 7.6 | 2024-12-17 | CVE-2024-9624 | cve | The WP All Import Pro plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.9.3 due to missing SSRF protection on the pmxi_cu... |
| N/A | 2024-12-17 | CVE-2021-26280 | cve | Locally installed application can bypass the permission check and perform system operations that require permission. |
| N/A | 2024-12-17 | CVE-2021-26281 | cve | Some parameters of the alarm clock module are improperly stored, leaking some sensitive information. |
| N/A | 2024-12-17 | CVE-2024-11999 | cve | CWE-1104: Use of Unmaintained Third-Party Components vulnerability exists that could cause complete control of the device when an authenticated user installs malicious code into... |
| 6.1 | 2024-12-17 | CVE-2024-12219 | cve | The Stop Registration Spam plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.23. This is due to missing or incorrect nonce... |
| 6.1 | 2024-12-17 | CVE-2024-12220 | cve | The SMS for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.1. This is due to missing or incorrect nonce v... |
| 5.3 | 2024-12-17 | CVE-2024-11294 | cve | The Memberful plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.73.9 via the WordPress core search feature. This makes... |
| Page(s) : 1 ... 1451 1452 1453 1454 1455 1456 1457 1458 1459 1460 [1461] 1462 1463 1464 1465 1466 1467 1468 1469 1470 1471 ... | Result(s) : 328784 |
