| Page(s) : 1 ... 310 311 312 313 314 315 316 317 318 319 [320] 321 322 323 324 325 326 327 328 329 330 ... | Result(s) : 299053 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-05-06 | CVE-2025-40625 | cve | Unrestricted file upload in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to upload any file within the server, even a malicious file to obtain a R... |
| 9.8 | 2025-05-06 | CVE-2025-40624 | cve | SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject an SQL statement to obtain, update and delete all information in the datab... |
| 9.8 | 2025-05-06 | CVE-2025-40623 | cve | SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject an SQL statement to obtain, update and delete all information in the datab... |
| 9.8 | 2025-05-06 | CVE-2025-40622 | cve | SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject an SQL statement to obtain, update and delete all information in the datab... |
| 9.8 | 2025-05-06 | CVE-2025-40621 | cve | SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject an SQL statement to obtain, update and delete all information in the datab... |
| 9.8 | 2025-05-06 | CVE-2025-40620 | cve | SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject an SQL statement to obtain, update and delete all information in the datab... |
| N/A | 2025-05-06 | CVE-2025-4041 | cve | In Optigo Networks ONS NC600 versions 4.2.1-084 through 4.7.2-330, an attacker could connect with the device's ssh server and utilize the system's components to perfor... |
| 6.4 | 2025-05-06 | CVE-2025-3782 | cve | The Cision Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 4.3.0 due to insufficient input s... |
| N/A | 2025-05-06 | CVE-2025-37730 | cve | Improper certificate validation in Logstash's TCP output could lead to a man-in-the-middle (MitM) attack in “client” mode, as hostname verification in TCP output was not be... |
| 8.8 | 2025-05-06 | CVE-2025-3610 | cve | The Reales WP STPT plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.1.2. This is due to the plugin not pro... |
| 5.3 | 2025-05-06 | CVE-2025-3609 | cve | The Reales WP STPT plugin for WordPress is vulnerable to unauthorized user registration in all versions up to, and including, 2.1.2. This is due to the 'reales_user_signup_... |
| 5.3 | 2025-05-06 | CVE-2025-3281 | cve | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all version... |
| N/A | 2025-05-06 | CVE-2025-32022 | cve | Finit provides fast init for Linux systems. Finit's urandom plugin has a heap buffer overwrite vulnerability at boot which leads to it overwriting other parts of the heap, ... |
| 5.4 | 2025-05-06 | CVE-2025-3020 | cve | An low privileged remote Attacker can execute arbitrary web scripts or HTML via a crafted payload injected into several fields of the configuration webpage with limited impact. |
| N/A | 2025-05-06 | CVE-2025-30165 | cve | vLLM is an inference and serving engine for large language models. In a multi-node vLLM deployment using the V0 engine, vLLM uses ZeroMQ for some multi-node communication purpos... |
| 8.8 | 2025-05-06 | CVE-2025-2898 | cve | IBM Maximo Application Suite 9.0 could allow an attacker with some level of access to elevate their privileges due to a security configuration vulnerability in Role-Based Access... |
| 7.3 | 2025-05-06 | CVE-2025-2802 | cve | The LayoutBoxx plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 0.3.1. This is due to the software allowing users to exe... |
| 5.5 | 2025-05-06 | CVE-2025-27248 | cve | in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference. |
| 5.5 | 2025-05-06 | CVE-2025-27241 | cve | in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference. |
| 7.8 | 2025-05-06 | CVE-2025-27132 | cve | in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited o... |
| Page(s) : 1 ... 310 311 312 313 314 315 316 317 318 319 [320] 321 322 323 324 325 326 327 328 329 330 ... | Result(s) : 299053 |
