| Page(s) : 1 ... 348 349 350 351 352 353 354 355 356 357 [358] 359 360 361 362 363 364 365 366 367 368 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-05-23 | CVE-2023-31752 | cve | SourceCodester Employee and Visitor Gate Pass Logging System v1.0 is vulnerable to SQL Injection via /employee_gatepass/classes/Login.php. |
| 9.8 | 2023-05-23 | CVE-2023-33361 | cve | Piwigo 13.6.0 is vulnerable to SQL Injection via /admin/permalinks.php. |
| 9.8 | 2023-05-23 | CVE-2023-33362 | cve | Piwigo 13.6.0 is vulnerable to SQL Injection via in the "profile" function. |
| 9.8 | 2023-05-23 | CVE-2023-33338 | cve | Old Age Home Management 1.0 is vulnerable to SQL Injection via the username parameter. |
| 9.8 | 2023-05-23 | CVE-2020-20012 | cve | WebPlus Pro v1.4.7.8.4-01 is vulnerable to Incorrect Access Control. |
| 9.8 | 2023-05-23 | CVE-2023-27068 | cve | Deserialization of Untrusted Data in Sitecore Experience Platform through 10.2 allows remote attackers to run arbitrary code via ValidationResult.aspx. |
| 9.1 | 2023-05-23 | CVE-2023-29919 | cve | SolarView Compact |
| 9.8 | 2023-05-23 | CVE-2023-31814 | cve | D-Link DIR-300 firmware |
| 9.8 | 2023-05-23 | CVE-2023-25953 | cve | Code injection vulnerability in Drive Explorer for macOS versions 3.5.4 and earlier allows an attacker who can login to the client where the affected product is installed to inj... |
| 9.8 | 2023-05-23 | CVE-2023-27388 | cve | Improper authentication vulnerability in T&D Corporation and ESPEC MIC CORP. data logger products allows a remote unauthenticated attacker to login to the product as a registere... |
| 9.8 | 2023-05-23 | CVE-2023-27397 | cve | Unrestricted upload of file with dangerous type exists in MicroEngine Mailform version 1.1.0 to 1.1.8. If the product's file upload function and server save option are enab... |
| 9.8 | 2023-05-23 | CVE-2023-27507 | cve | MicroEngine Mailform version 1.1.0 to 1.1.8 contains a path traversal vulnerability. If the product's file upload function and server save option are enabled, a remote atta... |
| 9.8 | 2023-05-23 | CVE-2023-28408 | cve | Directory traversal vulnerability in MW WP Form versions v4.4.2 and earlier allows a remote unauthenticated attacker to alter the website or cause a denial-of-service (DoS) cond... |
| 9.8 | 2023-05-23 | CVE-2023-28409 | cve | Unrestricted upload of file with dangerous type exists in MW WP Form versions v4.4.2 and earlier, which may allow a remote unauthenticated attacker to upload an arbitrary file. |
| 9.8 | 2023-05-23 | CVE-2023-28413 | cve | Directory traversal vulnerability in Snow Monkey Forms versions v5.0.6 and earlier allows a remote unauthenticated attacker to obtain sensitive information, alter the website, o... |
| 9.8 | 2023-05-22 | CVE-2023-2504 | cve | Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials. |
| 9.8 | 2023-05-22 | CVE-2022-46658 | cve | The affected product is vulnerable to a stack-based buffer overflow which could lead to a denial of service or remote code execution. |
| 9.8 | 2023-05-22 | CVE-2022-46738 | cve | The affected product exposes multiple sensitive data fields of the affected product. An attacker can use the SNMP command to get device mac address and login as admin. |
| 9.1 | 2023-05-22 | CVE-2023-2838 | cve | Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2. |
| 9.8 | 2023-05-22 | CVE-2023-2840 | cve | NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2. |
| Page(s) : 1 ... 348 349 350 351 352 353 354 355 356 357 [358] 359 360 361 362 363 364 365 366 367 368 ... | Result(s) : 43290 |
