| Page(s) : 1 ... 166 167 168 169 170 171 172 173 174 175 [176] 177 178 179 180 181 182 183 184 185 186 ... | Result(s) : 312940 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2025-03-04 | CVE-2025-1891 | cve | A vulnerability was found in shishuocms 1.1 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The ... |
| 7.5 | 2025-03-04 | CVE-2025-27219 | cve | In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. The method does not impose any ... |
| 7.5 | 2025-03-04 | CVE-2025-27220 | cve | In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method. |
| 5.3 | 2025-03-04 | CVE-2025-27221 | cve | In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retaine... |
| N/A | 2025-03-03 | CVE-2024-30154 | cve | HCL SX is vulnerable to cross-site request forgery vulnerability which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the web... |
| 7.5 | 2025-03-03 | CVE-2025-1877 | cve | A vulnerability, which was classified as critical, was found in D-Link DAP-1562 1.10. This affects the function pure_auth_check of the component HTTP POST Request Handler. The m... |
| 3.1 | 2025-03-03 | CVE-2025-1878 | cve | A vulnerability has been found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This vulnerability affects unknown code of the component WiFi. The manipulati... |
| 9.8 | 2025-03-03 | CVE-2025-1889 | cve | picklescan before 0.0.22 only considers standard pickle file extensions in the scope for its vulnerability scan. An attacker could craft a malicious model that uses Pickle and i... |
| 6.1 | 2025-03-03 | CVE-2025-25939 | cve | Reprise License Manager 14.2 is vulnerable to reflected cross-site scripting in /goform/activate_process via the akey parameter. |
| 8.8 | 2025-03-03 | CVE-2025-25967 | cve | Acora CMS version 10.1.1 is vulnerable to Cross-Site Request Forgery (CSRF). This flaw enables attackers to trick authenticated users into performing unauthorized actions, such ... |
| N/A | 2025-03-03 | CVE-2025-26206 | cve | Cross Site Request Forgery vulnerability in sell done storefront v.1.0 allows a remote attacker to escalate privileges via the index.html component |
| 6.1 | 2025-03-03 | CVE-2025-27499 | cve | WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the processa_... |
| 6.1 | 2025-03-03 | CVE-2025-27500 | cve | OpenZiti is a free and open source project focused on bringing zero trust to any application. An endpoint(/api/upload) on the admin panel can be accessed without any form of aut... |
| N/A | 2025-03-03 | CVE-2025-27501 | cve | OpenZiti is a free and open source project focused on bringing zero trust to any application. An endpoint on the admin panel can be accessed without any form of authentication. ... |
| 4.8 | 2025-03-03 | CVE-2024-10904 | cve | There is a stored Cross-site Scripting vulnerability in ArcGIS Server for versions 10.9.1 – 11.3 that may allow a remote, authenticated attacker to create a stored crafted link ... |
| 4.8 | 2025-03-03 | CVE-2024-51942 | cve | There is a stored Cross-site Scripting vulnerability in ArcGIS Server for versions 10.9.1 – 11.3 that may allow a remote, authenticated attacker to create a stored crafted link ... |
| 4.8 | 2025-03-03 | CVE-2024-51944 | cve | There is a stored Cross-site Scripting vulnerability in ArcGIS Server for versions 10.9.1 – 11.3 that may allow a remote, authenticated attacker to create a stored crafted link ... |
| N/A | 2025-03-03 | CVE-2024-51945 | cve | There is a stored Cross-site Scripting vulnerability in ArcGIS Server for versions 10.9.1 – 11.3 that may allow a remote, authenticated attacker to create a stored crafted link ... |
| N/A | 2025-03-03 | CVE-2024-51946 | cve | There is a stored Cross-site Scripting vulnerability in ArcGIS Server for versions 10.9.1 – 11.3 that may allow a remote, authenticated attacker to create a stored crafted link ... |
| N/A | 2025-03-03 | CVE-2024-51947 | cve | There is a stored Cross-site Scripting vulnerability in ArcGIS Server for versions 10.9.1 – 11.3 that may allow a remote, authenticated attacker to create a stored crafted link ... |
| Page(s) : 1 ... 166 167 168 169 170 171 172 173 174 175 [176] 177 178 179 180 181 182 183 184 185 186 ... | Result(s) : 312940 |
