| Page(s) : 1 ... 372 373 374 375 376 377 378 379 380 381 [382] 383 384 385 386 387 388 389 390 391 392 ... | Result(s) : 299185 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-28 | CVE-2025-25776 | cve | Cross-Site Scripting (XSS) vulnerability exists in the User Registration and User Profile features of Codeastro Bus Ticket Booking System v1.0 allows an attacker to execute arbi... |
| 3.4 | 2025-04-28 | CVE-2025-23377 | cve | Dell PowerProtect Data Manager Reporting, version(s) 19.17, 19.18 contain(s) an Improper Encoding or Escaping of Output vulnerability. A high privileged attacker with local acce... |
| 4.4 | 2025-04-28 | CVE-2025-23376 | cve | Dell PowerProtect Data Manager Reporting, version(s) 19.16, 19.17, 19.18, contain(s) an Improper Neutralization of Special Elements Used in a Template Engine vulnerability. A hi... |
| 7.8 | 2025-04-28 | CVE-2025-23375 | cve | Dell PowerProtect Data Manager Reporting, version(s) 19.17, contain(s) an Incorrect Use of Privileged APIs vulnerability. A low privileged attacker with local access could poten... |
| N/A | 2025-04-28 | CVE-2025-22235 | cve | EndpointRequest.to() creates a matcher for null/** if the actuator endpoint, for which the EndpointRequest has been created, is disabled or not exposed. Your application may be... |
| N/A | 2025-04-28 | CVE-2025-0627 | cve | The WordPress Tag, Category, and Taxonomy Manager WordPress plugin before 3.30.0 does not sanitise and escape some of its Widgets settings, which could allow high privilege use... |
| 4.3 | 2025-04-28 | CVE-2025-0049 | cve | When a Web User without Create permission on subfolders attempts to upload a file to a non-existent directory, the error message includes the absolute server path which may allo... |
| N/A | 2025-04-28 | CVE-2024-9771 | cve | The WP-Recall WordPress plugin before 16.26.12 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-S... |
| 9.8 | 2025-04-28 | CVE-2024-32499 | cve | Newforma Project Center Server through 2023.3.0.32259 allows remote code execution because .NET Remoting is exposed. |
| N/A | 2025-04-28 | CVE-2024-13688 | cve | The Admin and Site Enhancements (ASE) WordPress plugin before 7.6.10 uses a hardcoded password in its Password Protection feature, allowing attacker to bypass the protection off... |
| N/A | 2025-04-28 | CVE-2024-12706 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in OpenText™ Digital Asset Management. T he vulnerability could all... |
| 5.4 | 2025-04-28 | CVE-2024-11922 | cve | Missing input validation in certain features of the Web Client of Fortra's GoAnywhere prior to version 7.8.0 allows an attacker with permission to trigger emails to insert ... |
| 5.3 | 2025-04-28 | CVE-2024-10635 | cve | Enterprise Protection contains an improper input validation vulnerability in attachment defense that allows an unauthenticated remote attacker to bypass attachment scanning secu... |
| 9.8 | 2025-04-28 | CVE-2023-42404 | cve | OneVision Workspace before WS23.1 SR1 (build w31.040) allows arbitrary Java EL execution. |
| 9.8 | 2025-04-28 | CVE-2023-35817 | cve | DevExpress before 23.1.3 allows AsyncDownloader SSRF. |
| 5.3 | 2025-04-28 | CVE-2023-35816 | cve | DevExpress before 23.1.3 allows arbitrary TypeConverter conversion. |
| 9.8 | 2025-04-28 | CVE-2023-35815 | cve | DevExpress before 23.1.3 has a data-source protection mechanism bypass during deserialization on XML data. |
| 9.8 | 2025-04-28 | CVE-2023-35814 | cve | DevExpress before 23.1.3 does not properly protect XtraReport serialized data in ASP.NET web forms. |
| 8.8 | 2025-04-28 | CVE-2022-41871 | cve | SEPPmail through 12.1.17 allows command injection within the Admin Portal. An authenticated attacker is able to execute arbitrary code in the context of the user root. |
| 6.1 | 2025-04-28 | CVE-2015-4582 | cve | The TheCartPress boot-store (aka Boot Store) theme 1.6.4 for WordPress allows header.php tcp_register_error XSS. NOTE: CVE-2015-4582 is not assigned to any Oracle product. |
| Page(s) : 1 ... 372 373 374 375 376 377 378 379 380 381 [382] 383 384 385 386 387 388 389 390 391 392 ... | Result(s) : 299185 |
