| Page(s) : 1 ... 7 8 9 10 11 12 13 14 15 16 [17] 18 19 20 21 22 23 24 25 26 27 ... | Result(s) : 301595 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-07-09 | CVE-2025-0139 | cve | An incorrect privilege assignment vulnerability in Palo Alto Networks Autonomous Digital Experience Manager allows a locally authenticated low privileged user on macOS endpoints... |
| N/A | 2025-07-09 | CVE-2025-0140 | cve | An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS and Linux devices enables a locally authenticated non administrative user t... |
| N/A | 2025-07-09 | CVE-2025-0141 | cve | An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on enables a locally authenticated non administrative user to escalate their privile... |
| N/A | 2025-07-09 | CVE-2025-0646 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| 7.5 | 2025-07-09 | CVE-2025-6970 | cve | The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versions up to, and... |
| 6.1 | 2025-07-09 | CVE-2025-6975 | cve | The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘calendar_header’ parameter in all versi... |
| 5.4 | 2025-07-09 | CVE-2025-6976 | cve | The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions u... |
| N/A | 2025-07-09 | CVE-2025-53548 | cve | Clerk helps developers build user management. Applications that use the verifyWebhook() helper to verify incoming Clerk webhooks are susceptible to accepting improperly signed w... |
| N/A | 2025-07-09 | CVE-2021-27961 | cve | evesys 7.1 (2152) through 8.0 (2202) allows Reflected XSS via the indexeva.php action parameter. |
| N/A | 2025-07-09 | CVE-2025-36599 | cve | Dell PowerFlex Manager VM, versions prior to 4.6.2.1, contains an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with remote access co... |
| N/A | 2025-07-09 | CVE-2025-53620 | cve | @builder.io/qwik-city is the meta-framework for Qwik. When a Qwik Server Action QRL is executed it dynamically load the file containing the symbol. When an invalid qfunc is sent... |
| N/A | 2025-07-09 | CVE-2025-52357 | cve | Cross-Site Scripting (XSS) vulnerability exists in the ping diagnostic feature of FiberHome FD602GW-DX-R410 router (firmware V2.2.14), allowing an authenticated attacker to exec... |
| N/A | 2025-07-09 | CVE-2025-53624 | cve | The Docusaurus gists plugin adds a page to your Docusaurus instance, displaying all public gists of a GitHub user. docusaurus-plugin-content-gists versions prior to 4.0.0 are vu... |
| 7.8 | 2025-07-09 | CVE-2025-6376 | cve | A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE file can force Arena Simulation to write beyond the boundaries of an allocated ob... |
| 7.8 | 2025-07-09 | CVE-2025-6377 | cve | A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE file can force Arena Simulation to write beyond the boundaries of an allocated ob... |
| 4.3 | 2025-07-09 | CVE-2025-1112 | cve | IBM OpenPages with Watson 8.3 and 9.0 could allow an authenticated user to obtain sensitive information that should only be available to privileged users. |
| 4.3 | 2025-07-09 | CVE-2025-2670 | cve | IBM OpenPages 9.0 is vulnerable to information disclosure of sensitive information due to a weaker than expected security for certain REST end points related to workflow feature... |
| N/A | 2025-07-09 | CVE-2025-52364 | cve | Insecure Permissions vulnerability in Tenda CP3 Pro Firmware V22.5.4.93 allows the telnet service (telnetd) by default at boot via the initialization script /etc/init.d/eth.sh. ... |
| N/A | 2025-07-09 | CVE-2025-53546 | cve | Folo organizes feeds content into one timeline. Using pull_request_target on .github/workflows/auto-fix-lint-format-commit.yml can be exploited by attackers, since untrusted cod... |
| N/A | 2025-07-09 | CVE-2025-7204 | cve | In ConnectWise PSA versions older than 2025.9, a vulnerability exists where authenticated users could gain access to sensitive user information. Specific API requests were found... |
| Page(s) : 1 ... 7 8 9 10 11 12 13 14 15 16 [17] 18 19 20 21 22 23 24 25 26 27 ... | Result(s) : 301595 |
