| Page(s) : 1 ... 26 27 28 29 30 31 32 33 34 35 [36] 37 38 39 40 41 42 43 44 45 46 ... | Result(s) : 114976 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-05-31 | CVE-2025-4590 | cve | The Daisycon prijsvergelijkers plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'daisycon_uitvaart' shortcode in all versions up... |
| 6.4 | 2025-05-31 | CVE-2025-4595 | cve | The FastSpring plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'fastspring/block-fastspringblocks-complete-product-catalog' blo... |
| 6.4 | 2025-05-31 | CVE-2025-5285 | cve | The Product Subtitle for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘htmlTag’ parameter in all versions up to, and including, 1.3.9 du... |
| 6.4 | 2025-05-31 | CVE-2025-5292 | cve | The Element Pack Addons for Elementor – Best Elementor addons with Ready Templates, Blocks, Widgets and WooCommerce Builder plugin for WordPress is vulnerable to Stored Cross-Si... |
| 6.4 | 2025-05-31 | CVE-2025-3813 | cve | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_elementor_data’ parameter in all versions up to, and includi... |
| 6.4 | 2025-05-31 | CVE-2025-5290 | cve | The Borderless – Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title’ parameter in all versions up to, and including,... |
| 4.4 | 2025-05-31 | CVE-2018-25111 | cve | django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in models.py. |
| 4.7 | 2025-05-31 | CVE-2025-5016 | cve | The Relevanssi – A Better Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Excerpt Highlights in all versions up to, and including, 4.24.5 (Free)... |
| 5.3 | 2025-05-30 | CVE-2025-1479 | cve | An open debug interface was reported in the Legion Space software included on certain Legion devices that could allow a local attacker to execute arbitrary code. |
| 6.5 | 2025-05-30 | CVE-2025-5142 | cve | The Simple Page Access Restriction plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.31. This is due to missing nonce va... |
| 5.4 | 2025-05-30 | CVE-2025-5235 | cve | The OpenSheetMusicDisplay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘className’ parameter in all versions up to, and including, 1.4.0 due to insu... |
| 6.5 | 2025-05-30 | CVE-2025-4597 | cve | The Woo Slider Pro – Drag Drop Slider Builder For WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wo... |
| 6.4 | 2025-05-30 | CVE-2025-4944 | cve | The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image Compare and Google Maps widgets in all vers... |
| 4.9 | 2025-05-30 | CVE-2025-48478 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, insufficient input validation during user creation has resulted in a mass assignment vuln... |
| 4.3 | 2025-05-30 | CVE-2025-48482 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, there is a mass assignment vulnerability. The Customer object is updated using the fill()... |
| 5.4 | 2025-05-30 | CVE-2025-48483 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect inpu... |
| 5.4 | 2025-05-30 | CVE-2025-48484 | cve | FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.178, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect inpu... |
| 5.3 | 2025-05-30 | CVE-2025-4659 | cve | The Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, ... |
| 6.4 | 2025-05-30 | CVE-2025-5259 | cve | The Minimal Share Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘align’ parameter in all versions up to, and including, 1.7.3 due to insuffic... |
| 6.1 | 2025-05-30 | CVE-2025-41406 | cve | Cross-site scripting vulnerability exists in wivia 5 all versions. If exploited, when a user connects to the affected device with a specific operation, an arbitrary script may b... |
| Page(s) : 1 ... 26 27 28 29 30 31 32 33 34 35 [36] 37 38 39 40 41 42 43 44 45 46 ... | Result(s) : 114976 |
