| Page(s) : 1 ... 356 357 358 359 360 361 362 363 364 365 [366] 367 368 369 370 371 372 373 374 375 376 ... | Result(s) : 324889 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-01 | CVE-2025-36558 | cve | KUNBUS PiCtory version 2.11.1 and earlier are vulnerable to a cross-site-scripting attack via the sso_token used for authentication. If an attacker provides the user with a PiCt... |
| N/A | 2025-05-01 | CVE-2025-36521 | cve | MicroDicom DICOM Viewer is vulnerable to an out-of-bounds read which may allow an attacker to cause memory corruption within the application. The user must open a malicious DCM ... |
| N/A | 2025-05-01 | CVE-2025-35996 | cve | KUNBUS PiCtory version 2.11.1 and earlier are vulnerable when an authenticated remote attacker crafts a special filename that can be stored by API endpoints. That filename is la... |
| N/A | 2025-05-01 | CVE-2025-35975 | cve | MicroDicom DICOM Viewer is vulnerable to an out-of-bounds write which may allow an attacker to execute arbitrary code. The user must open a malicious DCM file for exploitation. |
| 6.4 | 2025-05-01 | CVE-2025-3521 | cve | The Team Members – Best WordPress Team Plugin with Team Slider, Team Showcase & Team Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Social Link ic... |
| N/A | 2025-05-01 | CVE-2025-3517 | cve | Incorrect privilege assignment in PAM JIT elevation feature in Devolutions Server 2025.1.5.0 and earlier allows a PAM user to elevate a previously configured user configured in ... |
| 4.8 | 2025-05-01 | CVE-2025-3504 | cve | The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Si... |
| 4.8 | 2025-05-01 | CVE-2025-3503 | cve | The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Si... |
| 4.8 | 2025-05-01 | CVE-2025-3502 | cve | The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Si... |
| 6.5 | 2025-05-01 | CVE-2025-32890 | cve | An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. It uses a custom implementation of encryption without any additional integrity checking mecha... |
| 8.8 | 2025-05-01 | CVE-2025-32889 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app. |
| 8.8 | 2025-05-01 | CVE-2025-32888 | cve | An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app. |
| 6.5 | 2025-05-01 | CVE-2025-32887 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. A command channel includes the next hop. which can be intercepted and used to break frequency h... |
| 5.5 | 2025-05-01 | CVE-2025-32886 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. All packets sent over RF are also sent over UART with USB Shell, allowing someone with local ac... |
| 6.5 | 2025-05-01 | CVE-2025-32885 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The app there makes it possible to inject any custom message (into existing v1 networks) with a... |
| 6.5 | 2025-05-01 | CVE-2025-32884 | cve | An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. By default, a GID is the user's phone number unless they specifically opt out. A phone n... |
| N/A | 2025-05-01 | CVE-2025-32883 | cve | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-41722. Reason: This candidate is a reservation duplicate of CVE-2024-41722. Notes: All CVE users should r... |
| 6.5 | 2025-05-01 | CVE-2025-32882 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The app uses a custom implementation of encryption without any additional integrity checking me... |
| 6.5 | 2025-05-01 | CVE-2025-32881 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. By default, the GID is the user's phone number unless they specifically opt out. A phone n... |
| N/A | 2025-05-01 | CVE-2025-32011 | cve | KUNBUS PiCtory versions 2.5.0 through 2.11.1 have an authentication bypass vulnerability where a remote attacker can bypass authentication to get access due to a path traversal. |
| Page(s) : 1 ... 356 357 358 359 360 361 362 363 364 365 [366] 367 368 369 370 371 372 373 374 375 376 ... | Result(s) : 324889 |
