| Page(s) : 1 ... 322 323 324 325 326 327 328 329 330 331 [332] 333 334 335 336 337 338 339 340 341 342 ... | Result(s) : 299063 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.1 | 2025-05-03 | CVE-2025-4199 | cve | The Abundatrade Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.8.02. This is due to missing or incorrect nonce v... |
| 6.1 | 2025-05-03 | CVE-2025-4198 | cve | The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation ... |
| 6.1 | 2025-05-03 | CVE-2025-4188 | cve | The Advanced Reorder Image Text Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or inco... |
| 6.4 | 2025-05-03 | CVE-2025-4172 | cve | The VerticalResponse Newsletter Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'verticalresponse' shortcode in all vers... |
| 6.4 | 2025-05-03 | CVE-2025-4170 | cve | The Xavin's Review Ratings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'xrr' shortcode in all versions up to, and incl... |
| 6.4 | 2025-05-03 | CVE-2025-4168 | cve | The Subpage List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'subpages' shortcode in all versions up to, and including, 1.3... |
| 9.8 | 2025-05-03 | CVE-2025-3918 | cve | The Job Listings plugin for WordPress is vulnerable to Privilege Escalation due to improper authorization within the register_action() function in versions 0.1 to 0.1.1. The plu... |
| 6.4 | 2025-05-03 | CVE-2025-3815 | cve | The SurveyJS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.12.32 due to insufficient input san... |
| N/A | 2025-05-03 | CVE-2025-37799 | cve | In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp vmxnet3 driver's XDP handling is buggy for... |
| 6.4 | 2025-05-03 | CVE-2025-3779 | cve | The Personizely plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘widgetId’ parameter in all versions up to, and including, 0.10 due to insufficient inp... |
| 6.5 | 2025-05-03 | CVE-2025-1838 | cve | IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an authoring use... |
| 4.3 | 2025-05-03 | CVE-2025-1495 | cve | IBM Business Automation Workflow 24.0.0 and 24.0.1 through 24.0.1 IF001 Center may leak sensitive information due to missing authorization validation. |
| N/A | 2025-05-03 | CVE-2024-58135 | cve | Mojolicious versions from 7.28 through 9.40 for Perl may generate weak HMAC session secrets. When creating a default app with the "mojo generate app" tool, a weak secret is wri... |
| N/A | 2025-05-03 | CVE-2024-58134 | cve | Mojolicious versions from 0.999922 through 9.40 for Perl uses a hard coded string, or the application's class name, as a HMAC session secret by default. These predictable ... |
| 6.1 | 2025-05-03 | CVE-2024-41753 | cve | IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF004 and 24.0.1 through 24.0.1 IF001 is vulnerable to cross-site scripting. This vulnerability allows an unauthentic... |
| 7.3 | 2025-05-03 | CVE-2024-13738 | cve | The The Motors - Car Dealer, Rental & Listing WordPress theme theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.6.65. Th... |
| 3.3 | 2025-05-02 | CVE-2025-47226 | cve | Grokability Snipe-IT before 8.1.0 has incorrect authorization for accessing asset information. |
| 5.4 | 2025-05-02 | CVE-2025-47201 | cve | In Intrexx Portal Server before 12.0.4, multiple Velocity-Scripts are susceptible to the execution of unrequested JavaScript code in HTML, aka XSS. |
| N/A | 2025-05-02 | CVE-2025-46723 | cve | OpenVM is a performant and modular zkVM framework built for customization and extensibility. In version 1.0.0, OpenVM is vulnerable to overflow through byte decomposition of pc ... |
| N/A | 2025-05-02 | CVE-2025-46332 | cve | Flags SDK is an open-source feature flags toolkit for Next.js and SvelteKit. Impacted versions include flags from 3.2.0 and prior and @vercel/flags from 3.1.1 and prior as certa... |
| Page(s) : 1 ... 322 323 324 325 326 327 328 329 330 331 [332] 333 334 335 336 337 338 339 340 341 342 ... | Result(s) : 299063 |
