| Page(s) : 1 ... 5 6 7 8 9 10 11 12 13 14 [15] 16 17 18 19 20 21 22 23 24 25 ... | Result(s) : 287478 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-28 | CVE-2025-31469 | cve | Missing Authorization vulnerability in webrangers Clear Sucuri Cache allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Clear Sucuri Cac... |
| N/A | 2025-03-28 | CVE-2025-31470 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FancyThemes Page Takeover allows Stored XSS. This issue affects P... |
| N/A | 2025-03-28 | CVE-2025-31471 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Falcon Solutions Duplicate Page and Post allows Stored XSS. This ... |
| N/A | 2025-03-28 | CVE-2025-31472 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michele Marri Flatty allows Stored XSS. This issue affects Flatty... |
| N/A | 2025-03-28 | CVE-2025-31473 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in matthewprice1178 WP Database Optimizer allows Stored XSS. This is... |
| N/A | 2025-03-28 | CVE-2025-31474 | cve | Cross-Site Request Forgery (CSRF) vulnerability in matthewprice1178 WP Database Optimizer allows Cross Site Request Forgery. This issue affects WP Database Optimizer: from n/a t... |
| N/A | 2025-03-28 | CVE-2024-11504 | cve | Input from multiple fields in Streamsoft Prestiz is not sanitized properly, leading to an SQL injection vulnerability, which might be exploited by an authenticated remote attack... |
| N/A | 2025-03-28 | CVE-2024-7407 | cve | Use of a custom password encoding algorithm in Streamsoft Prestiz software allows straightforward decoding of passwords using their encoded forms, which are stored in the applic... |
| N/A | 2025-03-28 | CVE-2025-2908 | cve | The exposure of credentials in the call forwarding configuration module in MeetMe products in versions prior to 2024-09 allows an attacker to gain access to some important asset... |
| N/A | 2025-03-28 | CVE-2025-2909 | cve | The lack of encryption in the DuoxMe (formerly Blue) application binary in versions prior to 3.3.1 for iOS devices allows an attacker to gain unauthorised access to the applicat... |
| N/A | 2025-03-28 | CVE-2025-2910 | cve | User enumeration in the password reset module of the MeetMe authentication service in versions prior to 2024-09 allows an attacker to determine whether an email address is regis... |
| N/A | 2025-03-28 | CVE-2025-2911 | cve | Unauthorised access to the call forwarding service system in MeetMe products in versions prior to 2024-09 allows an attacker to identify multiple users and perform brute force a... |
| 4.5 | 2025-03-28 | CVE-2025-0986 | cve | IBM PowerVM Hypervisor FW1050.00 through FW1050.30 and FW1060.00 through FW1060.20 could allow a local user, under certain Linux processor combability mode configurations, to ca... |
| N/A | 2025-03-28 | CVE-2025-1781 | cve | There is a XXE in W3CSS Validator versions before cssval-20250226 that allows an attacker to use specially-crafted XML objects to coerce server-side request forgery (SSRF). Thi... |
| N/A | 2025-03-28 | CVE-2025-28219 | cve | Netgear DC112A V1.0.0.64 has an OS command injection vulnerability in the usb_adv.cgi, which allows remote attackers to execute arbitrary commands via parameter "deviceName" pas... |
| N/A | 2025-03-28 | CVE-2025-28220 | cve | Tenda W6_S v1.0.0.4_510 has a Buffer Overflow vulnerability in the setcfm function, which allows remote attackers to cause web server crash via parameter funcpara1 passed to the... |
| N/A | 2025-03-28 | CVE-2025-28221 | cve | Tenda W6_S v1.0.0.4_510 has a Buffer Overflow vulnerability in the set_local_time function, which allows remote attackers to cause web server crash via parameter time passed to ... |
| N/A | 2025-03-28 | CVE-2025-2858 | cve | Privilege escalation vulnerability in the saTECH BCU firmware version 2.1.3. An attacker with access to the CLI of the device could make use of the nice command to bypass all re... |
| N/A | 2025-03-28 | CVE-2025-2859 | cve | An attacker with access to the network where the vulnerable device is located could capture traffic and obtain cookies from the user, allowing them to steal a user's active... |
| N/A | 2025-03-28 | CVE-2025-2860 | cve | SaTECH BCU in its firmware version 2.1.3, allows an authenticated attacker to access information about the credentials that users have within the web (.xml file). In order to ex... |
| Page(s) : 1 ... 5 6 7 8 9 10 11 12 13 14 [15] 16 17 18 19 20 21 22 23 24 25 ... | Result(s) : 287478 |
