| Page(s) : 1 ... 6 7 8 9 10 11 12 13 14 15 [16] 17 18 19 20 21 22 23 24 25 26 ... | Result(s) : 124928 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.4 | 2025-06-26 | CVE-2025-6290 | cve | The Tournament Bracket Generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bracket' shortcode in all versions up to, and... |
| 6.4 | 2025-06-26 | CVE-2025-6378 | cve | The Responsive Food and Drink Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's display_pdf_menus shortcode in all versions up to, and... |
| 5.4 | 2025-06-26 | CVE-2025-6383 | cve | The WP-PhotoNav plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's photonav shortcode in all versions up to, and including, 1.2.2 due to ins... |
| 5.4 | 2025-06-26 | CVE-2025-6538 | cve | The Post Rating and Review plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘class’ parameter in all versions up to, and including, 1.3.4 due to insuffi... |
| 4 | 2025-06-26 | CVE-2025-5275 | cve | The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the privacy se... |
| 5.3 | 2025-06-26 | CVE-2025-5813 | cve | The Amazon Products to WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wcta2w_get_amazon_product_cal... |
| 5.4 | 2025-06-26 | CVE-2025-5929 | cve | The The Countdown plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘clientId’ parameter in all versions up to, and including, 2.0.1 due to insufficient ... |
| 4.3 | 2025-06-26 | CVE-2025-5932 | cve | The Homerunner plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.29. This is due to missing or incorrect nonce validatio... |
| 5.4 | 2025-06-26 | CVE-2025-6537 | cve | The Namasha By Mdesign plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘playicon_title’ parameter in all versions up to, and including, 1.2.00 due to i... |
| 6.4 | 2025-06-26 | CVE-2025-6540 | cve | The web-cam plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘slug’ parameter in all versions up to, and including, 1.0 due to insufficient input saniti... |
| 5.4 | 2025-06-26 | CVE-2025-6546 | cve | The Drive Folder Embedder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘tablecssclass’ parameter in all versions up to, and including, 1.1.0 due to ... |
| 4.3 | 2025-06-25 | CVE-2025-49550 | cve | Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security fea... |
| 6.8 | 2025-06-25 | CVE-2025-5833 | cve | Pioneer DMH-WT7600NEX Root Filesystem Insufficient Verification of Data Authenticity Vulnerability. This vulnerability allows physically present attackers to bypass authenticati... |
| 4.3 | 2025-06-25 | CVE-2025-6664 | cve | A vulnerability, which was classified as problematic, was found in CodeAstro Patient Record Management System 1.0. Affected is an unknown function. The manipulation leads to cro... |
| 6.4 | 2025-06-25 | CVE-2025-20264 | cve | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to bypass the authorization mechanism... |
| 5.5 | 2025-06-25 | CVE-2025-41647 | cve | A local, low-privileged attacker can learn the password of the connected controller in PLC Designer V4 due to an incorrect implementation that results in the password being disp... |
| 5.4 | 2025-06-25 | CVE-2025-6613 | cve | A vulnerability classified as problematic was found in PHPGurukul Hospital Management System 4.0. Affected by this vulnerability is an unknown functionality of the file /doctor/... |
| 5.3 | 2025-06-25 | CVE-2025-6603 | cve | A vulnerability was found in coldfunction qCUDA up to db0085400c2f2011eed46fbc04fdc0873141688e. It has been rated as problematic. Affected by this issue is the function qcow_mak... |
| 5.4 | 2025-06-25 | CVE-2025-5585 | cve | The SiteOrigin Widgets Bundle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `data-url` DOM Element Attribute in all versions up to, and including, 1.... |
| 5.4 | 2025-06-24 | CVE-2025-5318 | cve | A flaw was found in the libssh library. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to acce... |
| Page(s) : 1 ... 6 7 8 9 10 11 12 13 14 15 [16] 17 18 19 20 21 22 23 24 25 26 ... | Result(s) : 124928 |
