| Page(s) : 1 ... 219 220 221 222 223 224 225 226 227 228 [229] 230 231 232 233 234 235 236 237 238 239 ... | Result(s) : 324532 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.1 | 2025-05-17 | CVE-2025-4189 | cve | The Audio Comments Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.4. This is due to missing or incorrect nonce... |
| 6.1 | 2025-05-17 | CVE-2025-4194 | cve | The AlT Monitoring plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.3. This is due to missing or incorrect nonce valida... |
| 9.8 | 2025-05-17 | CVE-2025-4816 | cve | A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/appointment... |
| 9.8 | 2025-05-17 | CVE-2025-4817 | cve | A vulnerability was found in Sourcecodester Doctor's Appointment System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/de... |
| 9.8 | 2025-05-17 | CVE-2025-4818 | cve | A vulnerability was found in SourceCodester Doctor's Appointment System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/de... |
| 8.1 | 2025-05-17 | CVE-2025-3812 | cve | The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the qcld_openai_delete_training_file() ... |
| N/A | 2025-05-17 | CVE-2025-4190 | cve | The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server... |
| 9.8 | 2025-05-17 | CVE-2025-4389 | cve | The Crawlomatic Multipage Scraper Post Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the crawlomatic_generate_fea... |
| 9.8 | 2025-05-17 | CVE-2025-4391 | cve | The Echo RSS Feed Post Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the echo_generate_featured_image() function ... |
| 3.1 | 2025-05-17 | CVE-2025-4819 | cve | A vulnerability classified as problematic has been found in y_project RuoYi 4.8.0. Affected is an unknown function of the file /monitor/online/batchForceLogout of the component ... |
| 6.4 | 2025-05-17 | CVE-2025-4610 | cve | The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpmem_user_memberships shortcode in all versions up to, ... |
| 8.8 | 2025-05-17 | CVE-2025-4823 | cve | A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been rated as critical. Affected by this issue is the function submit-url of the fil... |
| 8.8 | 2025-05-17 | CVE-2025-4824 | cve | A vulnerability classified as critical has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formWsc of the... |
| 8.8 | 2025-05-17 | CVE-2025-4825 | cve | A vulnerability classified as critical was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This vulnerability affects unknown code of the file /boafrm/formDMZ ... |
| 8.8 | 2025-05-17 | CVE-2025-4826 | cve | A vulnerability, which was classified as critical, has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This issue affects some unknown processing of the f... |
| 7.5 | 2025-05-17 | CVE-2024-13613 | cve | The Wise Chat plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.3 via the 'uploads' directory. This makes ... |
| 5.4 | 2025-05-17 | CVE-2025-3527 | cve | The EventON Pro plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in the 'assets/lib/settings/settings.js' file... |
| 5.4 | 2025-05-17 | CVE-2025-3888 | cve | The Jupiter X Core plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File inclusion in all versions up to, and including, 4.8.12 due to insufficient inpu... |
| 5.4 | 2025-05-17 | CVE-2025-4669 | cve | The WP Booking Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpbc shortcode in all versions up to, and including, 10.11.1 due ... |
| 9.8 | 2025-05-17 | CVE-2025-48187 | cve | RAGFlow through 0.18.1 allows account takeover because it is possible to conduct successful brute-force attacks against email verification codes to perform arbitrary account reg... |
| Page(s) : 1 ... 219 220 221 222 223 224 225 226 227 228 [229] 230 231 232 233 234 235 236 237 238 239 ... | Result(s) : 324532 |
