| Page(s) : 1 ... 141 142 143 144 145 146 147 148 149 150 [151] 152 153 154 155 156 157 158 159 160 161 ... | Result(s) : 114981 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.3 | 2025-02-20 | CVE-2024-13520 | cve | The Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) plugin for WordPress is vulnerable to unauthorized modification of data|loss of data due to a missing capabil... |
| 4.8 | 2025-02-20 | CVE-2024-13748 | cve | The Ultimate Classified Listings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title parameter in all versions up to, and including, 1.4 due to insuf... |
| 5.4 | 2025-02-20 | CVE-2024-13802 | cve | The Bandsintown Events plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bandsintown_events' shortcode in all versions up to, an... |
| 4.8 | 2025-02-20 | CVE-2024-13849 | cve | The Cookie Notice Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.3.0 due to insufficient input sanitization and ou... |
| 4.3 | 2025-02-20 | CVE-2024-13855 | cve | The Prime Addons for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.0.1 via the pae_global_block shortc... |
| 5.4 | 2025-02-20 | CVE-2024-6432 | cve | The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter within the plugin's shortcode Content ... |
| 6.5 | 2025-02-20 | CVE-2025-0866 | cve | The Legoeso PDF Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘checkedVals’ parameter in all versions up to, and including, 1.2.2 due to insuffi... |
| 5.4 | 2025-02-20 | CVE-2025-1328 | cve | The Typed JS: A typewriter style animation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘typespeed’ parameter in all versions up to, and including, ... |
| 5.3 | 2025-02-20 | CVE-2025-1483 | cve | The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the engtz_wd_save_drops... |
| 4.3 | 2025-02-20 | CVE-2024-43196 | cve | IBM OpenPages with Watson 8.3 and 9.0 application could allow an authenticated user to manipulate data in the Questionnaires application allowing the user to spoof other users... |
| 6.5 | 2025-02-20 | CVE-2024-49355 | cve | IBM OpenPages with Watson 8.3 and 9.0 may write improperly neutralized data to server log files when the tracing is enabled per the System Tracing feature. |
| 6.5 | 2025-02-20 | CVE-2024-49780 | cve | IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages could allow a remote attacker to traverse directories on the system. An attacker with privileges to perform Import Configurat... |
| 5.4 | 2025-02-20 | CVE-2024-13445 | cve | The Elementor Website Builder – More Than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the border, margin and gap parameters in all ... |
| 5.3 | 2025-02-19 | CVE-2025-27090 | cve | Sliver is an open source cross-platform adversary emulation/red team framework, it can be used by organizations of all sizes to perform security testing. The reverse port forwar... |
| 5.4 | 2025-02-19 | CVE-2024-28776 | cve | IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript ... |
| 5.9 | 2025-02-19 | CVE-2024-28780 | cve | IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 Rich Client uses weaker than expected cryptographic algorithms that could allow an attacker to de... |
| 6.5 | 2025-02-19 | CVE-2024-45081 | cve | IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated user to modify restricted content due to incorrect authorization checks. |
| 6.6 | 2025-02-19 | CVE-2025-1465 | cve | A vulnerability, which was classified as problematic, was found in lmxcms 1.41. Affected is an unknown function of the file db.inc.php of the component Maintenance. The manipula... |
| 5.8 | 2025-02-19 | CVE-2025-20153 | cve | A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to bypass the configured rules and allow emails th... |
| 4.4 | 2025-02-19 | CVE-2025-20158 | cve | A vulnerability in the debug shell of Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series could allow an authenticated, local attacker to access sensitive information on an ... |
| Page(s) : 1 ... 141 142 143 144 145 146 147 148 149 150 [151] 152 153 154 155 156 157 158 159 160 161 ... | Result(s) : 114981 |
