| Page(s) : 1 ... 248 249 250 251 252 253 254 255 256 257 [258] 259 260 261 262 263 264 265 266 267 268 ... | Result(s) : 298997 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-13 | CVE-2025-47278 | cve | Flask is a web server gateway interface (WSGI) web application framework. In Flask 3.1.0, the way fallback key configuration was handled resulted in the last fallback key being ... |
| N/A | 2025-05-13 | CVE-2025-47276 | cve | Actualizer is a single shell script solution to allow developers and embedded engineers to create Debian operating systems (OS). Prior to version 1.2.0, Actualizer uses OpenSSL&... |
| N/A | 2025-05-13 | CVE-2025-47204 | cve | An issue was discovered in post.php in bootstrap-multiselect (aka Bootstrap Multiselect) 1.1.2. A PHP script in the source code echoes arbitrary POST data. If a developer adopts... |
| N/A | 2025-05-13 | CVE-2025-46721 | cve | nosurf is cross-site request forgery (CSRF) protection middleware for Go. A vulnerability in versions prior to 1.2.0 allows an attacker who controls content on the target site, ... |
| N/A | 2025-05-13 | CVE-2025-4668 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been re... |
| 9.8 | 2025-05-13 | CVE-2025-4660 | cve | A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named pipe. The pipe is accessible to the Eve... |
| N/A | 2025-05-13 | CVE-2025-4649 | cve | Improper Privilege Management vulnerability in Centreon web allows Privilege Escalation. ACL are not correctly taken into account in the display of the "event logs" page. This p... |
| N/A | 2025-05-13 | CVE-2025-4648 | cve | Download of Code Without Integrity Check vulnerability in Centreon web allows Reflected XSS. A user with elevated privileges can inject XSS by altering the content of a SVG medi... |
| N/A | 2025-05-13 | CVE-2025-4647 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Centreon web allows Reflected XSS. A user with elevated p... |
| N/A | 2025-05-13 | CVE-2025-4646 | cve | Improper Privilege Management vulnerability in Centreon web (API Token creation form modules) allows Privilege Escalation.This issue affects web: from 24.04.0 before 24.04.10, f... |
| N/A | 2025-05-13 | CVE-2025-45867 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the static_dns1 parameter in the formIpv6Setup interface. |
| N/A | 2025-05-13 | CVE-2025-45866 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolEnd parameter in the formDhcpv6s interface. |
| 9.8 | 2025-05-13 | CVE-2025-45865 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the dnsaddr parameter in the formDhcpv6s interface. |
| N/A | 2025-05-13 | CVE-2025-45864 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolStart parameter in the formDhcpv6s interface. |
| 9.8 | 2025-05-13 | CVE-2025-45861 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the routername parameter in the formDnsv6 interface. |
| N/A | 2025-05-13 | CVE-2025-45859 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface. |
| N/A | 2025-05-13 | CVE-2025-45857 | cve | EDIMAX CV7428NS v1.20 was discovered to contain a remote code execution (RCE) vulnerability via the command parameter in the mp function. |
| N/A | 2025-05-13 | CVE-2025-4574 | cve | In crossbeam-channel rust crate, the internal `Channel` type's `Drop` method has a race condition which could, in some circumstances, lead to a double-free that could resul... |
| N/A | 2025-05-13 | CVE-2025-44831 | cve | EngineerCMS v1.02 through v2.0.5 has a SQL injection vulnerability in the /project/addproject interface. |
| 8.8 | 2025-05-13 | CVE-2025-4474 | cve | The Frontend Dashboard plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the fed_admin_setting_form_function() function in versions... |
| Page(s) : 1 ... 248 249 250 251 252 253 254 255 256 257 [258] 259 260 261 262 263 264 265 266 267 268 ... | Result(s) : 298997 |
