| Page(s) : 1 ... 253 254 255 256 257 258 259 260 261 262 [263] 264 265 266 267 268 269 270 271 272 273 ... | Result(s) : 299005 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.5 | 2025-05-13 | CVE-2025-30174 | cve | A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versions), SIMATIC PCS neo V5.0 (All versions), SINEC NMS (All versions), SINEMA Remote Connect (All versions), ... |
| N/A | 2025-05-13 | CVE-2025-30159 | cve | Kirby is an open-source content management system. A vulnerability in versions prior to 3.9.8.3, 3.10.1.2, and 4.7.1 affects all Kirby sites that use the `snippet()` helper or `... |
| 8.6 | 2025-05-13 | CVE-2025-30018 | cve | The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) allows an unauthenticated attacker to submit an application servlet request with a crafted XML file which ... |
| 3.9 | 2025-05-13 | CVE-2025-30012 | cve | The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java applet component within the affected SRM stack to accept binary Java objects in spe... |
| 5.3 | 2025-05-13 | CVE-2025-30011 | cve | The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java applet component within the affected SRM packages which allows an unauthenticated a... |
| 6.1 | 2025-05-13 | CVE-2025-30010 | cve | The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java applet component within the affected SRM packages which allows an unauthenticated a... |
| 6.1 | 2025-05-13 | CVE-2025-30009 | cve | he Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java applet component within the affected SRM packages which allows an unauthenticated at... |
| N/A | 2025-05-13 | CVE-2025-28057 | cve | owl-admin v3.2.2~ to v4.10.2 is vulnerable to SQL Injection in /admin-api/system/admin_menus/save_order. |
| N/A | 2025-05-13 | CVE-2025-28056 | cve | rebuild v3.9.0 through v3.9.3 has a SQL injection vulnerability in /admin/admin-cli/exec component. |
| N/A | 2025-05-13 | CVE-2025-28055 | cve | upset-gal-web v7.1.0 /api/music/v1/cover.ts contains an arbitrary file read vulnerabilit |
| N/A | 2025-05-13 | CVE-2025-27696 | cve | Improper Authorization vulnerability in Apache Superset allows ownership takeover of dashboards, charts or datasets by authenticated users with read permissions. This issue aff... |
| 4.4 | 2025-05-13 | CVE-2025-26662 | cve | The Data Services Management Console does not sufficiently encode user-controlled inputs, allowing an attacker to inject malicious script. When a targeted victim, who is already... |
| N/A | 2025-05-13 | CVE-2025-26646 | cve | External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network. |
| 9.8 | 2025-05-13 | CVE-2025-26390 | cve | A vulnerability has been identified in OZW672 (All versions < V6.0), OZW772 (All versions < V6.0). The web service of affected devices is vulnerable to SQL injection when checki... |
| 10 | 2025-05-13 | CVE-2025-26389 | cve | A vulnerability has been identified in OZW672 (All versions < V8.0), OZW772 (All versions < V8.0). The web service in affected devices does not sanitize the input parameters req... |
| 6.5 | 2025-05-13 | CVE-2025-24510 | cve | A vulnerability has been identified in MS/TP Point Pickup Module (All versions). Affected devices improperly handle specific incoming BACnet MSTP messages. This could allow an a... |
| N/A | 2025-05-13 | CVE-2025-24495 | cve | Incorrect initialization of resource in the branch prediction unit for some Intel(R) Coreā¢ Ultra Processors may allow an authenticated user to potentially enable information dis... |
| N/A | 2025-05-13 | CVE-2025-24308 | cve | Improper input validation in the UEFI firmware error handler for the Intel(R) Server D50DNP and M50FCP may allow a privileged user to potentially enable escalation of privilege ... |
| 5.9 | 2025-05-13 | CVE-2025-24009 | cve | A vulnerability has been identified in SIRIUS 3RK3 Modular Safety System (MSS) (All versions), SIRIUS Safety Relays 3SK2 (All versions). The affected devices do not require auth... |
| 6.5 | 2025-05-13 | CVE-2025-24008 | cve | A vulnerability has been identified in SIRIUS 3RK3 Modular Safety System (MSS) (All versions), SIRIUS Safety Relays 3SK2 (All versions). The affected devices do not encrypt data... |
| Page(s) : 1 ... 253 254 255 256 257 258 259 260 261 262 [263] 264 265 266 267 268 269 270 271 272 273 ... | Result(s) : 299005 |
