| Page(s) : 1 ... 244 245 246 247 248 249 250 251 252 253 [254] 255 256 257 258 259 260 261 262 263 264 ... | Result(s) : 298997 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-14 | CVE-2025-3875 | cve | Thunderbird parses addresses in a way that can allow sender spoofing in case the server allows an invalid From address to be used. For example, if the From header contains an (i... |
| N/A | 2025-05-14 | CVE-2025-3834 | cve | Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the OU History report. |
| N/A | 2025-05-14 | CVE-2025-3833 | cve | Zohocorp ManageEngine ADSelfService Plus versions 6513 and prior are vulnerable to authenticated SQL injection in the MFA reports. |
| 5.3 | 2025-05-14 | CVE-2025-3769 | cve | The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, ... |
| 9.1 | 2025-05-14 | CVE-2025-3623 | cve | The Uncanny Automator plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 6.4.0.1 via deserialization of untrusted input in the auto... |
| N/A | 2025-05-14 | CVE-2025-3600 | cve | In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an unsafe reflection vulnerability exists that may lead to an unhandled exception resulting in a crash of t... |
| 4.4 | 2025-05-14 | CVE-2025-33104 | cve | IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus alterin... |
| N/A | 2025-05-14 | CVE-2025-32421 | cve | Next.js is a React framework for building full-stack web applications. Versions prior to 14.2.24 and 15.1.6 have a race-condition vulnerability. This issue only affects the Page... |
| N/A | 2025-05-14 | CVE-2025-32363 | cve | mediDOK before 2.5.18.43 allows remote attackers to achieve remote code execution on a target system via deserialization of untrusted data. |
| N/A | 2025-05-14 | CVE-2025-30668 | cve | Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of service via network access. |
| N/A | 2025-05-14 | CVE-2025-30667 | cve | NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. |
| N/A | 2025-05-14 | CVE-2025-30666 | cve | NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. |
| N/A | 2025-05-14 | CVE-2025-30665 | cve | NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. |
| N/A | 2025-05-14 | CVE-2025-30664 | cve | Improper neutralization of special elements in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access. |
| N/A | 2025-05-14 | CVE-2025-30663 | cve | Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access. |
| N/A | 2025-05-14 | CVE-2025-29691 | cve | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the user... |
| N/A | 2025-05-14 | CVE-2025-29690 | cve | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the outt... |
| N/A | 2025-05-14 | CVE-2025-29689 | cve | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the pass... |
| N/A | 2025-05-14 | CVE-2025-29688 | cve | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the titl... |
| N/A | 2025-05-14 | CVE-2025-29686 | cve | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the titl... |
| Page(s) : 1 ... 244 245 246 247 248 249 250 251 252 253 [254] 255 256 257 258 259 260 261 262 263 264 ... | Result(s) : 298997 |
