| Page(s) : 1 ... 146 147 148 149 150 151 152 153 154 155 [156] 157 158 159 160 161 162 163 164 165 166 ... | Result(s) : 43256 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-06-13 | CVE-2024-37849 | cve | A SQL Injection vulnerability in itsourcecode Billing System 1.0 allows a local attacker to execute arbitrary code in process.php via the username parameter. |
| 9.8 | 2024-06-13 | CVE-2024-37131 | cve | SCG Policy Manager, all versions, contains an overly permissive Cross-Origin Resource Policy (CORP) vulnerability. A remote unauthenticated attacker could potentially exploit th... |
| 9.8 | 2024-06-13 | CVE-2024-22441 | cve | HPE Cray Parallel Application Launch Service (PALS) is subject to an authentication bypass. |
| 9.8 | 2024-06-13 | CVE-2024-38281 | cve | An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on the device. |
| 9.8 | 2024-06-13 | CVE-2024-30299 | cve | Adobe Framemaker Publishing Server versions 2020.3, 2022.2 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. An att... |
| 9.8 | 2024-06-13 | CVE-2024-30300 | cve | Adobe Framemaker Publishing Server versions 2020.3, 2022.2 and earlier are affected by an Information Exposure vulnerability (CWE-200) that could lead to privilege escalation. A... |
| 9.8 | 2024-06-13 | CVE-2024-38294 | cve | ALCASAR before 3.6.1 allows email_registration_back.php remote code execution. |
| 9.8 | 2024-06-13 | CVE-2024-38295 | cve | ALCASAR before 3.6.1 allows still_connected.php remote code execution. |
| 9.8 | 2024-06-13 | CVE-2024-3552 | cve | The Web Directory Free WordPress plugin before 1.7.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated ... |
| 9.8 | 2024-06-13 | CVE-2024-26029 | cve | Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could l... |
| 9.8 | 2024-06-13 | CVE-2024-34102 | cve | Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability ... |
| 9.8 | 2024-06-13 | CVE-2024-34107 | cve | Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. ... |
| 9.8 | 2024-06-13 | CVE-2024-4371 | cve | The CoDesigner WooCommerce Builder for Elementor – Customize Checkout, Shop, Email, Products & More plugin for WordPress is vulnerable to PHP Object Injection in all versions up... |
| 9.8 | 2024-06-13 | CVE-2024-3922 | cve | The Dokan Pro plugin for WordPress is vulnerable to SQL Injection via the 'code' parameter in all versions up to, and including, 3.10.3 due to insufficient escaping on... |
| 9.8 | 2024-06-12 | CVE-2024-1576 | cve | SQL Injection vulnerability in MegaBIP software allows attacker to obtain site administrator privileges, including access to the administration panel and the ability to change t... |
| 9.8 | 2024-06-12 | CVE-2024-1577 | cve | Remote Code Execution vulnerability in MegaBIP software allows to execute arbitrary code on the server without requiring authentication by saving crafted by the attacker PHP cod... |
| 9.8 | 2024-06-12 | CVE-2024-1659 | cve | Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the server (including a PHP code file) without an authentication. This issue affect... |
| 9.8 | 2024-06-12 | CVE-2024-36264 | cve | ** UNSUPPORTED WHEN ASSIGNED ** Improper Authentication vulnerability in Apache Submarine Commons Utils. If the user doesn't explicitly set `submarine.auth.default.secret`... |
| 9.8 | 2024-06-12 | CVE-2024-36265 | cve | ** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization vulnerability in Apache Submarine Server Core. This issue affects Apache Submarine Server Core: from 0.8.0. As this pro... |
| 9.8 | 2024-06-12 | CVE-2024-5893 | cve | A vulnerability classified as critical has been found in SourceCodester Cab Management System 1.0. This affects an unknown part of the file /cms/classes/Users.php?f=delete_clien... |
| Page(s) : 1 ... 146 147 148 149 150 151 152 153 154 155 [156] 157 158 159 160 161 162 163 164 165 166 ... | Result(s) : 43256 |
