| Page(s) : 1 ... 325 326 327 328 329 330 331 332 333 334 [335] 336 337 338 339 340 341 342 343 344 345 ... | Result(s) : 299063 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.3 | 2025-05-02 | CVE-2025-2880 | cve | The Yame | Link In Bio plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 0.9.0 through the publicly accessible phpinfo.p... |
| N/A | 2025-05-02 | CVE-2025-2812 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mydata Informatics Ticket Sales Automation allows Blind SQL Injec... |
| 8.8 | 2025-05-02 | CVE-2025-2605 | cve | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Honeywell MB-Secure allows Privilege Abuse. This issue affe... |
| 6.1 | 2025-05-02 | CVE-2025-2488 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Profelis Informatics SambaBox allows Cross-Site Scripting ... |
| 9.8 | 2025-05-02 | CVE-2025-2421 | cve | Improper Control of Generation of Code ('Code Injection') vulnerability in Profelis Informatics SambaBox allows Code Injection.This issue affects SambaBox: before 5.1. |
| N/A | 2025-05-02 | CVE-2025-21572 | cve | OpenGrok 1.13.25 has a reflected Cross-Site Scripting (XSS) issue when producing the history view page. This happens through improper handling of path segments. The application ... |
| N/A | 2025-05-02 | CVE-2025-1884 | cve | Use-After-Free vulnerability exists in the SLDPRT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerability could allow an attacker t... |
| N/A | 2025-05-02 | CVE-2025-1883 | cve | Out-Of-Bounds Write vulnerability exists in the OBJ file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerability could allow an attacker... |
| 4.3 | 2025-05-02 | CVE-2025-1327 | cve | The Homey theme for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.4.4 via the 'homey_delete_user_account' action ... |
| 4.3 | 2025-05-02 | CVE-2025-1326 | cve | The Homey theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the homey_reservation_del() function in all versions up to,... |
| 6.1 | 2025-05-02 | CVE-2025-1301 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Yordam Informatics Library Automation System allows Reflec... |
| 7.8 | 2025-05-02 | CVE-2025-0427 | cve | Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privi... |
| 7.8 | 2025-05-02 | CVE-2025-0072 | cve | Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform impro... |
| N/A | 2025-05-02 | CVE-2024-58253 | cve | In the obfstr crate before 0.4.4 for Rust, the obfstr! argument type is not restricted to string slices, leading to invalid UTF-8 conversion that produces an invalid value. |
| 5.3 | 2025-05-02 | CVE-2024-55913 | cve | IBM Concert Software 1.0.0 through 1.0.5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "... |
| 5.9 | 2025-05-02 | CVE-2024-55912 | cve | IBM Concert Software 1.0.0 through 1.0.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. |
| 6.5 | 2025-05-02 | CVE-2024-55910 | cve | IBM Concert Software 1.0.0 through 1.0.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the sys... |
| 6.5 | 2025-05-02 | CVE-2024-55909 | cve | IBM Concert Software 1.0.0 through 1.0.5 could allow an authenticated user to cause a denial of service due to the expansion of archive files without controlling resource consum... |
| N/A | 2025-05-02 | CVE-2024-55069 | cve | ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_header in /libavformat/iamfdec.c. |
| 5.4 | 2025-05-02 | CVE-2024-13860 | cve | The Buddyboss Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘bbp_topic_title’ parameter in all versions up to, and including, 2.8.50 due to ... |
| Page(s) : 1 ... 325 326 327 328 329 330 331 332 333 334 [335] 336 337 338 339 340 341 342 343 344 345 ... | Result(s) : 299063 |
