| Page(s) : 1 ... 368 369 370 371 372 373 374 375 376 377 [378] 379 380 381 382 383 384 385 386 387 388 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-04-15 | CVE-2023-2027 | cve | The ZM Ajax Login & Register plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.0.2. This is due to insufficient verification on the... |
| 9.8 | 2023-04-15 | CVE-2021-46880 | cve | x509/x509_verify.c in LibreSSL before 3.4.2, and OpenBSD before 7.0 errata 006, allows authentication bypass because an error for an unverified certificate chain is sometimes di... |
| 9.8 | 2023-04-15 | CVE-2023-26463 | cve | strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initi... |
| 10 | 2023-04-14 | CVE-2023-29199 | cve | There exists a vulnerability in source code transformer (exception sanitization logic) of vm2 for versions up to 3.9.15, allowing attackers to bypass `handleException()` and lea... |
| 9.8 | 2023-04-14 | CVE-2023-27654 | cve | An issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a escalation of privileges via the TTMultiProvider component. |
| 9.8 | 2023-04-14 | CVE-2023-2075 | cve | A vulnerability classified as critical has been found in Campcodes Online Traffic Offense Management System 1.0. This affects an unknown part of the file /admin/offenses/view_de... |
| 9.8 | 2023-04-14 | CVE-2022-45173 | cve | An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor Authentication can occur under the /api/v1/vdeskintegration/challenge endpoint. Becau... |
| 9.8 | 2023-04-14 | CVE-2022-45174 | cve | An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor Authentication for SAML Users can occur under the /login/backup_code endpoint and the... |
| 9.8 | 2023-04-14 | CVE-2023-29798 | cve | TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the command parameter in the setTracerouteCfg function. |
| 9.8 | 2023-04-14 | CVE-2023-29799 | cve | TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the hostname parameter in the setOpModeCfg function. |
| 9.8 | 2023-04-14 | CVE-2023-29800 | cve | TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the FileName parameter in the UploadFirmwareFile function. |
| 9.8 | 2023-04-14 | CVE-2023-29801 | cve | TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain multiple command injection vulnerabilities via the rtLogEnabled and rtLogServer parameters in the setSyslogCfg fun... |
| 9.8 | 2023-04-14 | CVE-2023-29802 | cve | TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the ip parameter in the setDiagnosisCfg function. |
| 9.8 | 2023-04-14 | CVE-2023-29803 | cve | TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the pid parameter in the disconnectVPN function. |
| 9.8 | 2023-04-14 | CVE-2023-29805 | cve | WFS-SR03 v1.0.3 was discovered to contain a command injection vulnerability via the pro_stor_canceltrans_handler_part_19 function. |
| 9.8 | 2023-04-14 | CVE-2023-2056 | cve | A vulnerability was found in DedeCMS up to 5.7.87 and classified as critical. This issue affects the function GetSystemFile of the file module_main.php. The manipulation leads t... |
| 9.8 | 2023-04-14 | CVE-2022-3748 | cve | Improper Authorization vulnerability in ForgeRock Inc. Access Management allows Authentication Bypass. This issue affects Access Management: from 6.5.0 through 7.2.0. |
| 9.8 | 2023-04-14 | CVE-2023-2043 | cve | A vulnerability, which was classified as problematic, was found in Control iD RHiD 23.3.19.0. This affects an unknown part of the file /v2/customerdb/operator.svc/a of the compo... |
| 9.8 | 2023-04-14 | CVE-2022-47027 | cve | Timmystudios Fast Typing Keyboard v1.275.1.162 allows unauthorized apps to overwrite arbitrary files in its internal storage via a dictionary traversal vulnerability and achieve... |
| 9.8 | 2023-04-14 | CVE-2023-1617 | cve | Improper Authentication vulnerability in B&R Industrial Automation B&R VC4 (VNC-Server modules). This vulnerability may allow an unauthenticated network-based attacker to bypas... |
| Page(s) : 1 ... 368 369 370 371 372 373 374 375 376 377 [378] 379 380 381 382 383 384 385 386 387 388 ... | Result(s) : 43290 |
