| Page(s) : 1 ... 329 330 331 332 333 334 335 336 337 338 [339] 340 341 342 343 344 345 346 347 348 349 ... | Result(s) : 324821 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-06 | CVE-2021-43069 | cve | Rejected reason: Not used |
| N/A | 2025-05-06 | CVE-2018-1359 | cve | Rejected reason: Not used |
| N/A | 2025-05-05 | CVE-2025-47268 | cve | ping in iputils through 20240905 allows a denial of service (application error or incorrect data collection) via a crafted ICMP Echo Reply packet, because of a signed 64-bit int... |
| N/A | 2025-05-05 | CVE-2025-47240 | cve | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security iss... |
| N/A | 2025-05-05 | CVE-2025-46813 | cve | Discourse is an open-source community platform. A data leak vulnerability affects sites deployed between commits 10df7fdee060d44accdee7679d66d778d1136510 and 82d84af6b0efbd9fa2a... |
| N/A | 2025-05-05 | CVE-2025-46734 | cve | league/commonmark is a PHP Markdown parser. A cross-site scripting (XSS) vulnerability in the Attributes extension of the league/commonmark library (versions 1.5.0 through 2.6.x... |
| N/A | 2025-05-05 | CVE-2025-46731 | cve | Craft is a content management system. Versions of Craft CMS on the 4.x branch prior to 4.14.13 and on the 5.x branch prior to 5.6.16 contains a potential remote code execution v... |
| N/A | 2025-05-05 | CVE-2025-46730 | cve | MobSF is a mobile application security testing tool used. Typically, MobSF is deployed on centralized internal or cloud-based servers that also host other security tools and web... |
| N/A | 2025-05-05 | CVE-2025-46726 | cve | Langroid is a framework for building large-language-model-powered applications. Prior to version 0.53.4, a LLM application leveraging `XMLToolMessage` class may be exposed to un... |
| N/A | 2025-05-05 | CVE-2025-46720 | cve | Keystone is a content management system for Node.js. Prior to version 6.5.0, `{field}.isFilterable` access control can be bypassed in `update` and `delete` mutations by adding a... |
| 5.4 | 2025-05-05 | CVE-2025-46719 | cve | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.6.6, a vulnerability in the way certain html tags in chat m... |
| 5.4 | 2025-05-05 | CVE-2025-46571 | cve | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.6.6, low privileged users can upload HTML files which conta... |
| N/A | 2025-05-05 | CVE-2025-46559 | cve | Misskey is an open source, federated social media platform. Starting in version 12.31.0 and prior to version 2025.4.1, missing validation in `Mk:api` allows malicious AiScript c... |
| N/A | 2025-05-05 | CVE-2025-46553 | cve | @misskey-dev/summaly is a tool for getting a summary of a web page. Starting in version 3.0.1 and prior to version 5.2.1, a logic error in the main `summaly` function causes the... |
| N/A | 2025-05-05 | CVE-2025-46340 | cve | Misskey is an open source, federated social media platform. Starting in version 12.0.0 and prior to version 2025.4.1, due to an oversight in the validation performed in `UrlPrev... |
| 5.4 | 2025-05-05 | CVE-2025-46335 | cve | Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. A Stored Cross-Site Scripting (XSS) vulnerability h... |
| 6.1 | 2025-05-05 | CVE-2025-45751 | cve | SourceCodester Web Based Pharmacy Product Management System 1.0 is vulnerable to Cross Site Scripting (XSS) in add-admin.php via the Fullname text field. |
| N/A | 2025-05-05 | CVE-2025-45618 | cve | Incorrect access control in the component /admin/sys/datasource/ajaxList of jeeweb-mybatis-springboot v0.0.1.RELEASE allows attackers to access sensitive information via a craft... |
| N/A | 2025-05-05 | CVE-2025-45617 | cve | Incorrect access control in the component /user/list of production_ssm v0.0.1-SNAPSHOT allows attackers to access sensitive information via a crafted payload. |
| N/A | 2025-05-05 | CVE-2025-45616 | cve | Incorrect access control in the /admin/** API of brcc v1.2.0 allows attackers to gain access to Admin rights via a crafted request. |
| Page(s) : 1 ... 329 330 331 332 333 334 335 336 337 338 [339] 340 341 342 343 344 345 346 347 348 349 ... | Result(s) : 324821 |
