| Page(s) : 1 ... 1565 1566 1567 1568 1569 1570 1571 1572 1573 1574 [1575] 1576 1577 1578 1579 1580 1581 1582 1583 1584 1585 ... | Result(s) : 329510 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2024-12-07 | CVE-2024-11904 | cve | The ???? ??? plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'msntt_add_plus_talk' shortcode in all versions up to, and includi... |
| 6.1 | 2024-12-07 | CVE-2024-11943 | cve | The ????? ?? ???? – ???? ?? ???? plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in ... |
| 4.3 | 2024-12-07 | CVE-2024-12026 | cve | The Message Filter for Contact Form 7 plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the saveFilter() function in a... |
| 4.3 | 2024-12-07 | CVE-2024-12115 | cve | The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.5.4. This is... |
| 6.1 | 2024-12-07 | CVE-2024-12165 | cve | The Mollie for Contact Form 7 plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 5.0.0... |
| 6.1 | 2024-12-07 | CVE-2024-12166 | cve | The Shortcodes Blocks Creator Ultimate plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and includi... |
| 6.1 | 2024-12-07 | CVE-2024-12167 | cve | The Shortcodes Blocks Creator Ultimate plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the '_wpnonce' parameter in all versions up to, and inc... |
| 6.1 | 2024-12-07 | CVE-2024-12257 | cve | The CardGate Payments for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and includin... |
| 5.3 | 2024-12-07 | CVE-2024-7894 | cve | The If Menu plugin for WordPress is vulnerable to unauthorized modification of the plugin's license key due to a missing capability check on the 'actions' functio... |
| 6.8 | 2024-12-07 | CVE-2024-8679 | cve | The Library Management System – Manage e-Digital Books Library plugin for WordPress is vulnerable to SQL Injection via the ‘value' parameter of the owt_lib_handler AJAX act... |
| 7.5 | 2024-12-06 | CVE-2024-45722 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses weak credential mechanism that could allow an attacker to easily calculate MQTT credentials. |
| 9.9 | 2024-12-06 | CVE-2024-46874 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow MQTT clients connecting with device credentials to send messages to some topics. Attackers with devi... |
| 6.5 | 2024-12-06 | CVE-2024-47146 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow an attacker to obtain the devices serial number if physically adjacent and sniffing the RAW WIFI sig... |
| 5.3 | 2024-12-06 | CVE-2024-47791 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow an attacker to subscribe to partial possible topics in Ruijie MQTT broker, and receive partial messa... |
| 9.8 | 2024-12-06 | CVE-2024-48874 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could give attackers the ability to force Ruijie's proxy servers to perform any request the attackers choos... |
| 9.8 | 2024-12-06 | CVE-2024-52324 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses an inherently dangerous function which could allow an attacker to send a malicious MQTT message resulting i... |
| N/A | 2024-12-06 | CVE-2024-0130 | cve | NVIDIA UFM Enterprise, UFM Appliance, and UFM CyberAI contain a vulnerability where an attacker can cause an improper authentication issue by sending a malformed request through... |
| N/A | 2024-12-06 | CVE-2024-0139 | cve | NVIDIA Base Command Manager and Bright Cluster Manager for Linux contain an insecure temporary file vulnerability. A successful exploit of this vulnerability might lead to denia... |
| N/A | 2024-12-06 | CVE-2024-12326 | cve | Jirafeau normally prevents browser preview for SVG files due to the possibility that manipulated SVG files could be exploited for cross site scripting. This was done by storing ... |
| N/A | 2024-12-06 | CVE-2024-7874 | cve | Tungsten Automation (Kofax) TotalAgility in versions all through 7.9.0.25.0.954 is vulnerable to a Reflected XSS attacks through mfpConnectionId parameter manipulation in a form... |
| Page(s) : 1 ... 1565 1566 1567 1568 1569 1570 1571 1572 1573 1574 [1575] 1576 1577 1578 1579 1580 1581 1582 1583 1584 1585 ... | Result(s) : 329510 |
