| Page(s) : 1 ... 308 309 310 311 312 313 314 315 316 317 [318] 319 320 321 322 323 324 325 326 327 328 ... | Result(s) : 324741 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-07 | CVE-2025-47449 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jordy Meow Meow Gallery allows Stored XSS. This issue affects Meo... |
| N/A | 2025-05-07 | CVE-2025-47448 | cve | Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Hotel Booking allows Cross Site Request Forgery. This issue affects WP Hotel Booking: from n/a through 2.1.9. |
| N/A | 2025-05-07 | CVE-2025-47447 | cve | Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak Cool Author Box allows Cross Site Request Forgery. This issue affects Cool Author Box: from n/a through 3.0.0. |
| N/A | 2025-05-07 | CVE-2025-47446 | cve | Cross-Site Request Forgery (CSRF) vulnerability in listamester Listamester allows Cross Site Request Forgery. This issue affects Listamester: from n/a through 2.3.6. |
| N/A | 2025-05-07 | CVE-2025-47443 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevart Widget Countdown allows Stored XSS. This issue affects W... |
| N/A | 2025-05-07 | CVE-2025-47442 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CC CC BMI Calculator allows Stored XSS. This issue affects CC BMI... |
| N/A | 2025-05-07 | CVE-2025-47441 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chris Reynolds Progress Bar allows Stored XSS. This issue affects... |
| N/A | 2025-05-07 | CVE-2025-47440 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Greg Winiarski WPAdverts allows PHP Local File... |
| N/A | 2025-05-07 | CVE-2025-47439 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP Chill Download Monitor allows PHP Local Fil... |
| N/A | 2025-05-07 | CVE-2025-47423 | cve | Personal Weather Station Dashboard 12_lts allows unauthenticated remote attackers to read arbitrary files via ../ directory traversal in the test parameter to /others/_test.php,... |
| N/A | 2025-05-07 | CVE-2025-47203 | cve | dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used. |
| N/A | 2025-05-07 | CVE-2025-46828 | cve | WeGIA is a web manager for charitable institutions. An unauthenticated SQL Injection vulnerability was identified in versions up to and including 3.3.0 in the endpoint `/html/s... |
| N/A | 2025-05-07 | CVE-2025-46827 | cve | Graylog is a free and open log management platform. Prior to versions 6.0.14, 6.1.10, and 6.2.0, it is possible to obtain user session cookies by submitting an HTML form as part... |
| N/A | 2025-05-07 | CVE-2025-46826 | cve | insa-auth is an authentication server for INSA Rouen. A minor issue allowed third-party websites to access the server's secondary authentication bridge, potentially reveali... |
| N/A | 2025-05-07 | CVE-2025-46824 | cve | The Discourse Code Review Plugin allows users to review GitHub commits on Discourse. Prior to commit eed3a80, an attacker can execute arbitrary JavaScript on users' browser... |
| N/A | 2025-05-07 | CVE-2025-46821 | cve | Envoy is a cloud-native edge/middle/service proxy. Prior to versions 1.34.1, 1.33.3, 1.32.6, and 1.31.8, Envoy's URI template matcher incorrectly excludes the `*` character... |
| 7.5 | 2025-05-07 | CVE-2025-46727 | cve | Rack is a modular Ruby web server interface. Prior to versions 2.2.14, 3.0.16, and 3.1.14, `Rack::QueryParser` parses query strings and `application/x-www-form-urlencoded` bodie... |
| N/A | 2025-05-07 | CVE-2025-46551 | cve | JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library. Starting in JRuby-OpenSSL version 0.12.1 and prior to version 0.15.4 (corresponding to JR... |
| N/A | 2025-05-07 | CVE-2025-46265 | cve | On F5OS, an improper authorization vulnerability exists where remotely authenticated users (LDAP, RADIUS, TACACS+) may be authorized with higher privilege F5OS roles. Note: Soft... |
| N/A | 2025-05-07 | CVE-2025-45514 | cve | Tenda FH451 V1.0.0.9 has a stack overflow vulnerability in the function.frmL7ImForm. |
| Page(s) : 1 ... 308 309 310 311 312 313 314 315 316 317 [318] 319 320 321 322 323 324 325 326 327 328 ... | Result(s) : 324741 |
