| Page(s) : 1 ... 359 360 361 362 363 364 365 366 367 368 [369] 370 371 372 373 374 375 376 377 378 379 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-05-04 | CVE-2023-30328 | cve | An issue in the helper tool of Mailbutler GmbH Shimo VPN Client for macOS v5.0.4 allows attackers to bypass authentication via PID re-use. |
| 9.8 | 2023-05-04 | CVE-2023-29827 | cve | ejs v3.1.9 is vulnerable to server-side template injection. If the ejs file is controllable, template injection can be implemented through the configuration settings of the clos... |
| 9.8 | 2023-05-04 | CVE-2023-2519 | cve | A vulnerability has been found in Caton CTP Relay Server 1.2.9 and classified as critical. This vulnerability affects unknown code of the file /server/api/v1/login of the compon... |
| 9.8 | 2023-05-04 | CVE-2023-2520 | cve | A vulnerability was found in Caton Prime 2.1.2.51.e8d7225049(202303031001) and classified as critical. This issue affects some unknown processing of the file cgi-bin/tools_ping.... |
| 9.8 | 2023-05-04 | CVE-2023-30203 | cve | Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the event_id parameter at /php-jms/result_sheet.php. |
| 9.9 | 2023-05-04 | CVE-2023-22651 | cve | Improper Privilege Management vulnerability in SUSE Rancher allows Privilege Escalation. A failure in the update logic of Rancher's admission Webhook may lead to the misco... |
| 9.8 | 2023-05-04 | CVE-2022-47757 | cve | In imo.im 2022.11.1051, a path traversal vulnerability delivered via an unsanitized deeplink can force the application to write a file into the application's data directory... |
| 9.8 | 2023-05-04 | CVE-2023-30077 | cve | Judging Management System v1.0 by oretnom23 was discovered to vulnerable to SQL injection via /php-jms/review_result.php?mainevent_id=, mainevent_id. |
| 9.8 | 2023-05-04 | CVE-2023-30331 | cve | An issue in the render function of beetl v3.15.0 allows attackers to execute server-side template injection (SSTI) via a crafted payload. |
| 9 | 2023-05-03 | CVE-2023-22637 | cve | An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and ... |
| 9.8 | 2023-05-03 | CVE-2023-25826 | cve | Due to insufficient validation of parameters passed to the legacy HTTP query API, it is possible to inject crafted OS commands into multiple parameters and execute malicious cod... |
| 9.8 | 2023-05-03 | CVE-2023-30204 | cve | Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the judge_id parameter at /php-jms/edit_judge.php. |
| 9.8 | 2023-05-02 | CVE-2023-26089 | cve | European Chemicals Agency IUCLID 6.x before 6.27.6 allows authentication bypass because a weak hard-coded secret is used for JWT signing. The affected versions are 5.15.0 throug... |
| 9.8 | 2023-05-02 | CVE-2023-29778 | cve | GL.iNET MT3000 4.1.0 Release 2 is vulnerable to OS Command Injection via /usr/lib/oui-httpd/rpc/logread. |
| 9.8 | 2023-05-02 | CVE-2023-29856 | cve | D-Link DIR-868L Hardware version A1, firmware version 1.12 is vulnerable to Buffer Overflow. The vulnerability is in scandir.sgi binary. |
| 9.8 | 2023-05-02 | CVE-2023-2479 | cve | OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4. |
| 9.8 | 2023-05-02 | CVE-2023-30869 | cve | Improper Authentication vulnerability in Easy Digital Downloads plugin allows unauth. Privilege Escalation. This issue affects Easy Digital Downloads: from 3.1 through 3.1.1.4.1. |
| 9.8 | 2023-05-02 | CVE-2023-1730 | cve | The SupportCandy WordPress plugin before 3.1.5 does not validate and escape user input before using it in an SQL statement, which could allow unauthenticated attackers to perfor... |
| 9.8 | 2023-05-01 | CVE-2022-35898 | cve | OpenText BizManager before 16.6.0.1 does not perform proper validation during the change-password operation. This allows any authenticated user to change the password of any oth... |
| 9.8 | 2023-05-01 | CVE-2023-30859 | cve | Triton is a Minecraft plugin for Spigot and BungeeCord that helps you translate your Minecraft server. The CustomPayload packet allows you to execute commands on the spigot/bukk... |
| Page(s) : 1 ... 359 360 361 362 363 364 365 366 367 368 [369] 370 371 372 373 374 375 376 377 378 379 ... | Result(s) : 43290 |
