| Page(s) : 1 ... 241 242 243 244 245 246 247 248 249 250 [251] 252 253 254 255 256 257 258 259 260 261 ... | Result(s) : 298990 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-15 | CVE-2025-1289 | cve | The Plugin Oficial WordPress plugin through 1.7.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cros... |
| N/A | 2025-05-15 | CVE-2025-1303 | cve | The Plugin Oficial WordPress plugin through 1.7.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting wh... |
| 8.8 | 2025-05-15 | CVE-2025-47785 | cve | Emlog is an open source website building system. In versions up to and including 2.5.9, SQL injection occurs because the $origContent parameter in admin/article_save.php is not ... |
| 4.8 | 2025-05-15 | CVE-2025-47786 | cve | Emlog is an open source website building system. Version 2.5.13 has a stored cross-site scripting vulnerability that allows any registered user to construct malicious JavaScript... |
| N/A | 2025-05-15 | CVE-2025-47787 | cve | Emlog is an open source website building system. Emlog Pro prior to version 2.5.10 contains a file upload vulnerability. The store.php component contains a critical security fla... |
| N/A | 2025-05-15 | CVE-2025-47788 | cve | Atheos is a self-hosted browser-based cloud IDE. Prior to v602, similar to GHSA-rgjm-6p59-537v/CVE-2025-22152, the `$target` parameter in `/controller.php` was not properly vali... |
| 9.8 | 2025-05-15 | CVE-2025-4715 | cve | A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /... |
| 9.8 | 2025-05-15 | CVE-2025-4716 | cve | A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /pages/cre... |
| N/A | 2025-05-14 | CVE-2025-47899 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47898 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47897 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47896 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47895 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47894 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47893 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47892 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47891 | cve | Rejected reason: Not used |
| N/A | 2025-05-14 | CVE-2025-47888 | cve | Jenkins DingTalk Plugin 2.7.3 and earlier unconditionally disables SSL/TLS certificate and hostname validation for connections to the configured DingTalk webhooks. |
| N/A | 2025-05-14 | CVE-2025-47887 | cve | Missing permission checks in Jenkins Cadence vManager Plugin 4.0.1-286.v9e25a_740b_a_48 and earlier allows attackers with Overall/Read permission to connect to an attacker-speci... |
| N/A | 2025-05-14 | CVE-2025-47886 | cve | A cross-site request forgery (CSRF) vulnerability in Jenkins Cadence vManager Plugin 4.0.1-286.v9e25a_740b_a_48 and earlier allows attackers to connect to an attacker-specified ... |
| Page(s) : 1 ... 241 242 243 244 245 246 247 248 249 250 [251] 252 253 254 255 256 257 258 259 260 261 ... | Result(s) : 298990 |
