| Page(s) : 1 ... 341 342 343 344 345 346 347 348 349 350 [351] 352 353 354 355 356 357 358 359 360 361 ... | Result(s) : 299076 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-01 | CVE-2025-23144 | cve | In the Linux kernel, the following vulnerability has been resolved: backlight: led_bl: Hold led_access lock when calling led_sysfs_disable() Lockdep detects the following issu... |
| N/A | 2025-05-01 | CVE-2025-23143 | cve | In the Linux kernel, the following vulnerability has been resolved: net: Fix null-ptr-deref by sock_lock_init_class_and_name() and rmmod. When I ran the repro [0] and waited a... |
| N/A | 2025-05-01 | CVE-2025-23142 | cve | In the Linux kernel, the following vulnerability has been resolved: sctp: detect and prevent references to a freed transport in sendmsg sctp_sendmsg() re-uses associations and... |
| N/A | 2025-05-01 | CVE-2025-23141 | cve | In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Acquire SRCU in KVM_GET_MP_STATE to protect guest memory accesses Acquire a lock on kvm->srcu whe... |
| N/A | 2025-05-01 | CVE-2025-23140 | cve | In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Avoid issue of interrupts remaining after request_irq error After devm_request_irq... |
| N/A | 2025-05-01 | CVE-2025-23139 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| 4.3 | 2025-05-01 | CVE-2025-2168 | cve | The Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider plugin for WordPress is vulne... |
| 6.4 | 2025-05-01 | CVE-2025-1529 | cve | The AM LottiePlayer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via uploaded lottie files in all versions up to, and including, 3.5.3 due to insufficient i... |
| 6 | 2025-05-01 | CVE-2025-1333 | cve | IBM MQ Container when used with the IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, and MQ Operato... |
| 8.8 | 2025-05-01 | CVE-2025-1305 | cve | The NewsBlogger theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.2.5.4. This is due to missing or incorrect nonce validati... |
| 8.8 | 2025-05-01 | CVE-2025-1304 | cve | The NewsBlogger theme for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the newsblogger_install_and_activate_plugin() function in all ve... |
| N/A | 2025-05-01 | CVE-2024-52979 | cve | Uncontrolled Resource Consumption in Elasticsearch while evaluating specifically crafted search templates with Mustache functions can lead to Denial of Service by causing the El... |
| N/A | 2025-05-01 | CVE-2024-52976 | cve | Inclusion of functionality from an untrusted control sphere in Elastic Agent subprocess, osqueryd, allows local attackers to execute arbitrary code via parameter injection. An ... |
| 5.3 | 2025-05-01 | CVE-2024-52903 | cve | IBM Db2 for Linux, UNIX and Windows 12.1.0 and 12.1.1 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query. |
| N/A | 2025-05-01 | CVE-2024-48907 | cve | Sematell ReplyOne 7.4.3.0 allows SSRF via the application server API. |
| N/A | 2025-05-01 | CVE-2024-48906 | cve | Sematell ReplyOne 7.4.3.0 allows XSS via a ReplyDesk e-mail attachment name. |
| N/A | 2025-05-01 | CVE-2024-48905 | cve | Sematell ReplyOne 7.4.3.0 has Insecure Permissions for the /rest/sessions endpoint. |
| 4.8 | 2025-05-01 | CVE-2024-13381 | cve | The Calculated Fields Form WordPress plugin before 5.2.62 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stor... |
| N/A | 2025-05-01 | CVE-2024-11994 | cve | APM server logs could contain parts of the document body from a partially failed bulk index request. Depending on the nature of the document, this could disclose sensitive infor... |
| N/A | 2025-05-01 | CVE-2024-11390 | cve | Unrestricted upload of a file with dangerous type in Kibana can lead to arbitrary JavaScript execution in a victim’s browser (XSS) via crafted HTML and JavaScript files. The at... |
| Page(s) : 1 ... 341 342 343 344 345 346 347 348 349 350 [351] 352 353 354 355 356 357 358 359 360 361 ... | Result(s) : 299076 |
