| Page(s) : 1 ... 313 314 315 316 317 318 319 320 321 322 [323] 324 325 326 327 328 329 330 331 332 333 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-08-02 | CVE-2022-40609 | cve | IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization flaw. By sending... |
| 9.8 | 2023-08-02 | CVE-2023-26443 | cve | Full-text autocomplete search allows user-provided SQL syntax to be injected to SQL statements. With existing sanitization in place, this can be abused to trigger benign SQL Exc... |
| 9.8 | 2023-08-01 | CVE-2023-33561 | cve | Improper input validation of password parameter in PHP Jabbers Time Slots Booking Calendar v 3.3 results in insecure passwords. |
| 9.8 | 2023-08-01 | CVE-2023-33562 | cve | User enumeration is found in in PHP Jabbers Time Slots Booking Calendar v3.3. This issue occurs during password recovery, where a difference in messages could allow an attacker ... |
| 9.8 | 2023-08-01 | CVE-2022-39986 | cve | A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to execute arbitrary commands via the cfg_id parameter in /ajax/openvpn/activate_ov... |
| 9.8 | 2023-08-01 | CVE-2023-31710 | cve | TP-Link Archer AX21(US)_V3_1.1.4 Build 20230219 and AX21(US)_V3.6_1.1.4 Build 20230219 are vulnerable to Buffer Overflow. |
| 9.8 | 2023-08-01 | CVE-2023-4056 | cve | Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Firefox ESR 102.13, Thunderbird 115.0, and Thunderbird 102.13. Some of these bugs showed evidence of memory corrupt... |
| 9.8 | 2023-08-01 | CVE-2023-4057 | cve | Memory safety bugs present in Firefox 115, Firefox ESR 115.0, and Thunderbird 115.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effo... |
| 9.8 | 2023-08-01 | CVE-2023-4058 | cve | Memory safety bugs present in Firefox 115. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited... |
| 9.8 | 2023-08-01 | CVE-2023-33493 | cve | An Unrestricted Upload of File with Dangerous Type vulnerability in the Ajaxmanager File and Database explorer (ajaxmanager) module for PrestaShop through 2.3.0, allows remote a... |
| 9.8 | 2023-08-01 | CVE-2023-36210 | cve | MotoCMS Version 3.4.3 Store Category Template was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the keyword parameter. |
| 9.8 | 2023-08-01 | CVE-2023-37478 | cve | pnpm is a package manager. It is possible to construct a tarball that, when installed via npm or parsed by the registry is safe, but when installed via pnpm is malicious, due to... |
| 9.8 | 2023-08-01 | CVE-2023-34960 | cve | A command injection vulnerability in the wsConvertPpt component of Chamilo v1.11.* up to v1.11.18 allows attackers to execute arbitrary commands via a SOAP API call with a craft... |
| 9.8 | 2023-07-31 | CVE-2023-39122 | cve | BMC Control-M through 9.0.20.200 allows SQL injection via the /RF-Server/report/deleteReport report-id parameter. This is fixed in 9.0.21 (and is also fixed by a patch for 9.0.2... |
| 9.1 | 2023-07-31 | CVE-2022-42183 | cve | Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Server-Side Request Forgery (SSRF). |
| 9.8 | 2023-07-31 | CVE-2020-21662 | cve | SQL injection vulnerability in yunyecms 2.0.2 allows remote attackers to run arbitrary SQL commands via XFF. |
| 9.8 | 2023-07-31 | CVE-2023-34635 | cve | Wifi Soft Unibox Administration 3.0 and 3.1 is vulnerable to SQL Injection. The vulnerability occurs because of not validating or sanitizing the user input in the username field... |
| 9.8 | 2023-07-31 | CVE-2023-34644 | cve | Remote code execution vulnerability in Ruijie Networks Product: RG-EW series home routers and repeaters EW_3.0(1)B11P204, RG-NBS and RG-S1930 series switches SWITCH_3.0(1)B11P21... |
| 9.8 | 2023-07-31 | CVE-2023-34842 | cve | Remote Code Execution vulnerability in DedeCMS through 5.7.109 allows remote attackers to run arbitrary code via crafted POST request to /dede/tpl.php. |
| 9.8 | 2023-07-31 | CVE-2023-36089 | cve | Authentication Bypass vulnerability in D-Link DIR-645 firmware version 1.03 allows remote attackers to gain escalated privileges via function phpcgi_main in cgibin. NOTE: This v... |
| Page(s) : 1 ... 313 314 315 316 317 318 319 320 321 322 [323] 324 325 326 327 328 329 330 331 332 333 ... | Result(s) : 43290 |
