| Page(s) : 1 ... 24 25 26 27 28 29 30 31 32 33 [34] 35 36 37 38 39 40 41 42 43 44 ... | Result(s) : 298063 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-06-10 | CVE-2025-35940 | cve | The ArchiverSpaApi ASP.NET application uses a hard-coded JWT signing key. An unauthenticated remote attacker can generate and use a verifiable JWT token to access protected Arc... |
| N/A | 2025-06-10 | CVE-2025-5978 | cve | A vulnerability was found in Tenda FH1202 1.2.0.14. It has been classified as critical. Affected is the function fromVirtualSer of the file /goform/VirtualSer. The manipulation ... |
| 9.8 | 2025-06-10 | CVE-2025-5979 | cve | A vulnerability classified as critical has been found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /branch.php. The manipulation of ... |
| 9.8 | 2025-06-10 | CVE-2025-5980 | cve | A vulnerability classified as critical was found in code-projects Restaurant Order System 1.0. This vulnerability affects unknown code of the file /order.php. The manipulation o... |
| N/A | 2025-06-10 | CVE-2024-29198 | cve | GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. It possible to achieve Service Side Request Forgery (SSRF) via t... |
| N/A | 2025-06-10 | CVE-2024-34711 | cve | GeoServer is an open source server that allows users to share and edit geospatial data. An improper URI validation vulnerability exists that enables an unauthorized attacker to ... |
| N/A | 2025-06-10 | CVE-2024-38524 | cve | GeoServer is an open source server that allows users to share and edit geospatial data. org.geowebcache.GeoWebCacheDispatcher.handleFrontPage(HttpServletRequest, HttpServletResp... |
| N/A | 2025-06-10 | CVE-2024-40625 | cve | GeoServer is an open source server that allows users to share and edit geospatial data. The Coverage rest api /workspaces/{workspaceName}/coveragestores/{storeName}/{method}.{fo... |
| N/A | 2025-06-10 | CVE-2025-22455 | cve | A hardcoded key in Ivanti Workspace Control before version 10.19.0.0 allows a local authenticated attacker to decrypt stored SQL credentials. |
| N/A | 2025-06-10 | CVE-2025-22463 | cve | A hardcoded key in Ivanti Workspace Control before version 10.19.10.0 allows a local authenticated attacker to decrypt the stored environment password. |
| 4.8 | 2025-06-10 | CVE-2025-26394 | cve | SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL is not properly sanitized, and an attacker could manipulate the string to red... |
| 7.1 | 2025-06-10 | CVE-2025-26395 | cve | SolarWinds Observability Self-Hosted was susceptible to a cross-site scripting (XSS) vulnerability due to an unsanitized field in the URL. The attack requires authentication u... |
| N/A | 2025-06-10 | CVE-2025-27505 | cve | GeoServer is an open source server that allows users to share and edit geospatial data. It is possible to bypass the default REST API security and access the index page. The RES... |
| N/A | 2025-06-10 | CVE-2025-30145 | cve | GeoServer is an open source server that allows users to share and edit geospatial data. Malicious Jiffle scripts can be executed by GeoServer, either as a rendering transformati... |
| N/A | 2025-06-10 | CVE-2025-37100 | cve | A vulnerability in the APIs of HPE Aruba Networking Private 5G Core could potentially expose sensitive information to unauthorized users. A successful exploitation could allow ... |
| N/A | 2025-06-10 | CVE-2025-46612 | cve | The Panel Designer dashboard in Airleader Master and Easy before 6.36 allows remote attackers to execute arbitrary commands via a wizard/workspace.jsp unrestricted file upload. ... |
| 7.8 | 2025-06-10 | CVE-2025-5335 | cve | A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to an untrusted search path being utilized in the Autodesk In... |
| N/A | 2025-06-10 | CVE-2025-5353 | cve | A hardcoded key in Ivanti Workspace Control before version 10.19.10.0 allows a local authenticated attacker to decrypt stored SQL credentials. |
| 4.3 | 2025-06-10 | CVE-2024-41797 | cve | A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V3.1), SCALANCE XC316-8 (6GK5324-8TS00-2AC2) (All versions < V3.1), SCALANCE XC324-4 (6... |
| 5.3 | 2025-06-10 | CVE-2025-27206 | cve | Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Improper Access Control vulnerability that could result in a Security fea... |
| Page(s) : 1 ... 24 25 26 27 28 29 30 31 32 33 [34] 35 36 37 38 39 40 41 42 43 44 ... | Result(s) : 298063 |
