| Page(s) : 1 ... 287 288 289 290 291 292 293 294 295 296 [297] 298 299 300 301 302 303 304 305 306 307 ... | Result(s) : 299038 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.5 | 2025-05-08 | CVE-2025-30102 | cve | Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.1.0, contains an out-of-bounds write vulnerability. A local low privileged attacker could potentially exploit this vulnerabi... |
| 6.3 | 2025-05-08 | CVE-2025-30101 | cve | Dell PowerScale OneFS, versions 9.8.0.0 through 9.10.1.0, contain a time-of-check time-of-use (TOCTOU) race condition vulnerability. An unauthenticated attacker with local acces... |
| 9.8 | 2025-05-08 | CVE-2025-29972 | cve | Server-Side Request Forgery (SSRF) in Azure allows an authorized attacker to perform spoofing over a network. |
| 8.8 | 2025-05-08 | CVE-2025-29827 | cve | Improper Authorization in Azure Automation allows an authorized attacker to elevate privileges over a network. |
| 9.8 | 2025-05-08 | CVE-2025-29813 | cve | [Spoofable identity claims] Authentication Bypass by Assumed-Immutable Data in Azure DevOps allows an unauthorized attacker to elevate privileges over a network. |
| N/A | 2025-05-08 | CVE-2025-28074 | cve | phpList before 3.6.15 is vulnerable to Cross-Site Scripting (XSS) due to improper input sanitization in lt.php. The vulnerability is exploitable when the application dynamically... |
| N/A | 2025-05-08 | CVE-2025-28073 | cve | phpList before 3.6.15 is vulnerable to Reflected Cross-Site Scripting (XSS) via the /lists/dl.php endpoint. An attacker can inject arbitrary JavaScript code by manipulating the ... |
| 6.1 | 2025-05-08 | CVE-2025-2806 | cve | The tagDiv Composer plugin for WordPress, used by the Newspaper theme, is vulnerable to Reflected Cross-Site Scripting via the ‘data’ parameter in all versions up to, and includ... |
| N/A | 2025-05-08 | CVE-2025-27720 | cve | The Pixmeo Osirix MD Web Portal sends credential information without encryption, which could allow an attacker to steal credentials. |
| N/A | 2025-05-08 | CVE-2025-27695 | cve | Dell Wyse Management Suite, versions prior to WMS 5.1 contain an Authentication Bypass by Spoofing vulnerability. A high privileged attacker with remote access could potentially... |
| N/A | 2025-05-08 | CVE-2025-27578 | cve | Pixmeo OsiriX MD is vulnerable to a use after free scenario, which could allow an attacker to upload a crafted DICOM file and cause memory corruption leading to a denial-of-serv... |
| 7.5 | 2025-05-08 | CVE-2025-26847 | cve | An issue was discovered in Znuny before 7.1.5. When generating a support bundle, not all passwords are masked. |
| 9.8 | 2025-05-08 | CVE-2025-26845 | cve | An Eval Injection issue was discovered in Znuny through 7.1.3. A user with write access to the configuration file can use this to execute a command executed by the user running ... |
| N/A | 2025-05-08 | CVE-2025-26844 | cve | An issue was discovered in Znuny through 7.1.3. A cookie is set without the HttpOnly flag. |
| N/A | 2025-05-08 | CVE-2025-26842 | cve | An issue was discovered in Znuny through 7.1.3. If access to a ticket is not given, the content of S/MIME encrypted e-mail messages is visible to users with access to the Commun... |
| N/A | 2025-05-08 | CVE-2025-1948 | cve | In Eclipse Jetty versions 12.0.0 to 12.0.16 included, an HTTP/2 client can specify a very large value for the HTTP/2 settings parameter SETTINGS_MAX_HEADER_LIST_SIZE. The Jetty ... |
| 7.8 | 2025-05-08 | CVE-2025-1331 | cve | IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the gets function. |
| 7.8 | 2025-05-08 | CVE-2025-1330 | cve | IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests b... |
| 7.8 | 2025-05-08 | CVE-2025-1329 | cve | IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by... |
| 7.4 | 2025-05-08 | CVE-2025-1254 | cve | Out-of-bounds Read, Out-of-bounds Write vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers, Overflow Buffers.This issue affects Connext Professio... |
| Page(s) : 1 ... 287 288 289 290 291 292 293 294 295 296 [297] 298 299 300 301 302 303 304 305 306 307 ... | Result(s) : 299038 |
