| Page(s) : 1 ... 255 256 257 258 259 260 261 262 263 264 [265] 266 267 268 269 270 271 272 273 274 275 ... | Result(s) : 324598 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-13 | CVE-2025-4649 | cve | Improper Privilege Management vulnerability in Centreon web allows Privilege Escalation. ACL are not correctly taken into account in the display of the "event logs" page. This p... |
| N/A | 2025-05-13 | CVE-2025-4648 | cve | Download of Code Without Integrity Check vulnerability in Centreon web allows Reflected XSS. A user with elevated privileges can inject XSS by altering the content of a SVG medi... |
| N/A | 2025-05-13 | CVE-2025-4647 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Centreon web allows Reflected XSS. A user with elevated p... |
| N/A | 2025-05-13 | CVE-2025-4646 | cve | Improper Privilege Management vulnerability in Centreon web (API Token creation form modules) allows Privilege Escalation.This issue affects web: from 24.04.0 before 24.04.10, f... |
| N/A | 2025-05-13 | CVE-2025-45867 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the static_dns1 parameter in the formIpv6Setup interface. |
| N/A | 2025-05-13 | CVE-2025-45866 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolEnd parameter in the formDhcpv6s interface. |
| 9.8 | 2025-05-13 | CVE-2025-45865 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the dnsaddr parameter in the formDhcpv6s interface. |
| N/A | 2025-05-13 | CVE-2025-45864 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the addrPoolStart parameter in the formDhcpv6s interface. |
| 9.8 | 2025-05-13 | CVE-2025-45861 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the routername parameter in the formDnsv6 interface. |
| N/A | 2025-05-13 | CVE-2025-45859 | cve | TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the bandstr parameter in the formMapDelDevice interface. |
| N/A | 2025-05-13 | CVE-2025-45857 | cve | EDIMAX CV7428NS v1.20 was discovered to contain a remote code execution (RCE) vulnerability via the command parameter in the mp function. |
| N/A | 2025-05-13 | CVE-2025-4574 | cve | In crossbeam-channel rust crate, the internal `Channel` type's `Drop` method has a race condition which could, in some circumstances, lead to a double-free that could resul... |
| N/A | 2025-05-13 | CVE-2025-44831 | cve | EngineerCMS v1.02 through v2.0.5 has a SQL injection vulnerability in the /project/addproject interface. |
| 8.8 | 2025-05-13 | CVE-2025-4474 | cve | The Frontend Dashboard plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the fed_admin_setting_form_function() function in versions... |
| 8.8 | 2025-05-13 | CVE-2025-4473 | cve | The Frontend Dashboard plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the ajax_request() function in versions 1.0 to 2.2.7. This... |
| N/A | 2025-05-13 | CVE-2025-44039 | cve | CP-XR-DE21-S -4G Router Firmware version 1.031.022 was discovered to contain insecure protections for its UART console. This vulnerability allows local attackers to connect to t... |
| 7.5 | 2025-05-13 | CVE-2025-4396 | cve | The Relevanssi – A Better Search plugin for WordPress is vulnerable to time-based SQL Injection via the cats and tags query parameters in all versions up to, and including, 4.24... |
| 7.8 | 2025-05-13 | CVE-2025-43557 | cve | Animate versions 24.0.8, 23.0.11 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the... |
| 7.8 | 2025-05-13 | CVE-2025-43556 | cve | Animate versions 24.0.8, 23.0.11 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the ... |
| 7.8 | 2025-05-13 | CVE-2025-43555 | cve | Animate versions 24.0.8, 23.0.11 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context... |
| Page(s) : 1 ... 255 256 257 258 259 260 261 262 263 264 [265] 266 267 268 269 270 271 272 273 274 275 ... | Result(s) : 324598 |
