| Page(s) : 1 ... 215 216 217 218 219 220 221 222 223 224 [225] 226 227 228 229 230 231 232 233 234 235 ... | Result(s) : 298979 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-17 | CVE-2025-4190 | cve | The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server... |
| 9.8 | 2025-05-17 | CVE-2025-4389 | cve | The Crawlomatic Multipage Scraper Post Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the crawlomatic_generate_fea... |
| 9.8 | 2025-05-17 | CVE-2025-4391 | cve | The Echo RSS Feed Post Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the echo_generate_featured_image() function ... |
| 3.1 | 2025-05-17 | CVE-2025-4819 | cve | A vulnerability classified as problematic has been found in y_project RuoYi 4.8.0. Affected is an unknown function of the file /monitor/online/batchForceLogout of the component ... |
| 6.4 | 2025-05-17 | CVE-2025-4610 | cve | The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpmem_user_memberships shortcode in all versions up to, ... |
| 8.8 | 2025-05-17 | CVE-2025-4823 | cve | A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been rated as critical. Affected by this issue is the function submit-url of the fil... |
| 8.8 | 2025-05-17 | CVE-2025-4824 | cve | A vulnerability classified as critical has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formWsc of the... |
| 8.8 | 2025-05-17 | CVE-2025-4825 | cve | A vulnerability classified as critical was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This vulnerability affects unknown code of the file /boafrm/formDMZ ... |
| 8.8 | 2025-05-17 | CVE-2025-4826 | cve | A vulnerability, which was classified as critical, has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This issue affects some unknown processing of the f... |
| 7.5 | 2025-05-17 | CVE-2024-13613 | cve | The Wise Chat plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.3 via the 'uploads' directory. This makes ... |
| 5.4 | 2025-05-17 | CVE-2025-3527 | cve | The EventON Pro plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in the 'assets/lib/settings/settings.js' file... |
| 5.4 | 2025-05-17 | CVE-2025-3888 | cve | The Jupiter X Core plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File inclusion in all versions up to, and including, 4.8.12 due to insufficient inpu... |
| 5.4 | 2025-05-17 | CVE-2025-4669 | cve | The WP Booking Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpbc shortcode in all versions up to, and including, 10.11.1 due ... |
| 9.8 | 2025-05-17 | CVE-2025-48187 | cve | RAGFlow through 0.18.1 allows account takeover because it is possible to conduct successful brute-force attacks against email verification codes to perform arbitrary account reg... |
| 4.3 | 2025-05-17 | CVE-2025-4101 | cve | The MultiVendorX – WooCommerce Multivendor Marketplace Solutions plugin for WordPress is vulnerable to unauthorized loss of data due to a misconfigured capability check on the &... |
| 8.8 | 2025-05-17 | CVE-2025-4827 | cve | A vulnerability, which was classified as critical, was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. Affected is an unknown function of the file /boafrm/form... |
| 8.8 | 2025-05-17 | CVE-2025-4829 | cve | A vulnerability classified as critical was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. Affected by this vulnerability is the function sub_40BE30 of the fil... |
| 8.8 | 2025-05-17 | CVE-2025-33103 | cve | IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 product IBM TCP/IP Connectivity Utilities for i contains a privilege escalation vulnerability. A malicious actor with command line access to th... |
| 8.8 | 2025-05-17 | CVE-2025-47273 | cve | setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability in `PackageIndex` is present in set... |
| 6.1 | 2025-05-17 | CVE-2025-47931 | cve | LibreNMS is PHP/MySQL/SNMP based network monitoring software. LibreNMS v25.4.0 and prior suffers from a Stored Cross-Site Scripting (XSS) Vulnerability in the `group name` param... |
| Page(s) : 1 ... 215 216 217 218 219 220 221 222 223 224 [225] 226 227 228 229 230 231 232 233 234 235 ... | Result(s) : 298979 |
