| Page(s) : 1 ... 1484 1485 1486 1487 1488 1489 1490 1491 1492 1493 [1494] 1495 1496 1497 1498 1499 1500 1501 1502 1503 1504 ... | Result(s) : 329203 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.5 | 2024-12-16 | CVE-2024-8798 | cve | No proper validation of the length of user input in olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c. |
| N/A | 2024-12-15 | CVE-2024-7701 | cve | Use of Password Hash With Insufficient Computational Effort vulnerability in percona percona-toolkit allows Encryption Brute Forcing.This issue affects percona-toolkit: 3.6.0. |
| N/A | 2024-12-15 | CVE-2024-11858 | cve | A flaw was found in Radare2, which contains a command injection vulnerability caused by insufficient input validation when handling Pebble Application files. Maliciously crafted... |
| N/A | 2024-12-15 | CVE-2024-55970 | cve | File Manager in Syncfusion Essential Studio for ASP.NET MVC before 27.1.55 has a traversal issue that is related to the request parameter, aka I644734. |
| N/A | 2024-12-15 | CVE-2024-56072 | cve | An issue was discovered in FastNetMon Community Edition through 1.2.7. The sFlow v5 plugin allows remote attackers to cause a denial of service (application crash) via a crafted... |
| N/A | 2024-12-15 | CVE-2024-56073 | cve | An issue was discovered in FastNetMon Community Edition through 1.2.7. Zero-length templates for Netflow v9 allow remote attackers to cause a denial of service (divide-by-zero e... |
| N/A | 2024-12-15 | CVE-2024-55969 | cve | DocIO in Syncfusion Essential Studio for ASP.NET MVC before 27.1.55 throws XMLException during the resaving of a DOCX document with an external reference XML, aka I640714. |
| N/A | 2024-12-15 | CVE-2024-56074 | cve | gitingest before 9996a06 mishandles symbolic links that point outside of the base directory. |
| N/A | 2024-12-15 | CVE-2024-56082 | cve | ChatBar.tsx in Lumos before 1.0.17 parses raw HTML in Markdown because the markdown-to-jsx package is used without disableParsingRawHTML set to true. |
| 7.8 | 2024-12-14 | CVE-2024-31891 | cve | IBM Storage Scale GUI 5.1.9.0 through 5.1.9.6 and 5.2.0.0 through 5.2.1.1 contains a local privilege escalation vulnerability. A malicious actor with command line access to th... |
| 7.5 | 2024-12-14 | CVE-2024-31892 | cve | IBM Storage Scale GUI 5.1.9.0 through 5.1.9.6 and 5.2.0.0 through 5.2.1.1 could allow a user to perform unauthorized actions after intercepting and modifying a csv file due to i... |
| 6.1 | 2024-12-14 | CVE-2024-10646 | cve | The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form's s... |
| 4.3 | 2024-12-14 | CVE-2024-10690 | cve | The Shortcodes for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.0.4 via the 'SHORTCODE_ELEMENTOR' short... |
| 6.4 | 2024-12-14 | CVE-2024-11752 | cve | The Eveeno plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'eveeno' shortcode in all versions up to, and including, 1.7 due to ... |
| 6.1 | 2024-12-14 | CVE-2024-12422 | cve | The Import Eventbrite Events plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.7.4 ... |
| 6.4 | 2024-12-14 | CVE-2024-12459 | cve | The Ganohrs Toggle Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'toggle' shortcode in all versions up to, and incl... |
| 6.4 | 2024-12-14 | CVE-2024-12474 | cve | The GeoDataSource Country Region DropDown plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gds-country-dropdown' shortcode in a... |
| 6.4 | 2024-12-14 | CVE-2024-12501 | cve | The Simple Locator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 2.0.3 due to insuffic... |
| 4.9 | 2024-12-14 | CVE-2024-11710 | cve | The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'fieldfor', 'visibl... |
| 7.5 | 2024-12-14 | CVE-2024-11711 | cve | The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'resumeid' parameter in ... |
| Page(s) : 1 ... 1484 1485 1486 1487 1488 1489 1490 1491 1492 1493 [1494] 1495 1496 1497 1498 1499 1500 1501 1502 1503 1504 ... | Result(s) : 329203 |
