| Page(s) : 1 ... 377 378 379 380 381 382 383 384 385 386 [387] 388 389 390 391 392 393 394 395 396 397 ... | Result(s) : 43291 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-04-03 | CVE-2022-38922 | cve | BluePage CMS thru 3.9 processes an insufficiently sanitized HTTP Header Cookie value allowing MySQL Injection in the 'users-cookie-settings' token using a Time-based b... |
| 9.8 | 2023-04-03 | CVE-2022-38923 | cve | BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload. |
| 9.8 | 2023-04-03 | CVE-2023-26119 | cve | Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and before 3.0.0 are vulnerable to Remote Code Execution (RCE) via XSTL, when browsing the attacker’s webpage. |
| 9.8 | 2023-04-02 | CVE-2023-27284 | cve | IBM Aspera Cargo 4.2.5 and IBM Aspera Connect 4.2.5 are vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow a buffer and execute arbi... |
| 9.8 | 2023-04-02 | CVE-2023-27286 | cve | IBM Aspera Cargo 4.2.5 and IBM Aspera Connect 4.2.5 are vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow a buffer and execute arbi... |
| 9.8 | 2023-04-02 | CVE-2023-28668 | cve | Jenkins Role-based Authorization Strategy Plugin 587.v2872c41fa_e51 and earlier grants permissions even after they've been disabled. |
| 9.8 | 2023-04-02 | CVE-2023-28677 | cve | Jenkins Convert To Pipeline Plugin 1.0 and earlier uses basic string concatenation to convert Freestyle projects' Build Environment, Build Steps, and Post-build Actions to ... |
| 9.8 | 2023-04-02 | CVE-2023-1797 | cve | A vulnerability classified as critical was found in OTCMS 6.0.1. Affected by this vulnerability is an unknown functionality of the file sysCheckFile.php?mudi=sql. The manipulati... |
| 9.8 | 2023-04-02 | CVE-2023-1800 | cve | A vulnerability, which was classified as critical, has been found in sjqzhang go-fastdfs up to 1.4.3. Affected by this issue is the function upload of the file /group1/uploa of ... |
| 9.8 | 2023-04-02 | CVE-2023-1791 | cve | A vulnerability has been found in SourceCodester Simple Task Allocation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the ... |
| 9.8 | 2023-04-02 | CVE-2023-1792 | cve | A vulnerability was found in SourceCodester Simple Mobile Comparison Website 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /ad... |
| 9.8 | 2023-04-02 | CVE-2023-1793 | cve | A vulnerability was found in SourceCodester Police Crime Record Management System 1.0. It has been classified as critical. This affects an unknown part of the file /officer/assi... |
| 9.8 | 2023-04-01 | CVE-2023-26822 | cve | D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via the service parameter at soapcgi.main. |
| 9.8 | 2023-04-01 | CVE-2023-1789 | cve | Improper Input Validation in GitHub repository firefly-iii/firefly-iii prior to 6.0.0. |
| 9.1 | 2023-03-31 | CVE-2022-47189 | cve | Generex UPS CS141 below 2.06 version, allows an attacker toupload a firmware file containing an incorrect configuration, in order to disrupt the normal functionality of the device. |
| 9.8 | 2023-03-31 | CVE-2022-47190 | cve | Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a firmware file containing a webshell that could allow him to execute arbitrary code as root. |
| 9.8 | 2023-03-31 | CVE-2023-28843 | cve | PrestaShop/paypal is an open source module for the PrestaShop web commerce ecosystem which provides paypal payment support. A SQL injection vulnerability found in the PrestaShop... |
| 9.8 | 2023-03-31 | CVE-2023-23594 | cve | An authentication bypass vulnerability in the web client interface for the CL4NX printer before firmware version 1.13.3-u724_r2 provides remote unauthenticated attackers with ac... |
| 9.8 | 2023-03-31 | CVE-2023-29141 | cve | An issue was discovered in MediaWiki before 1.35.10, 1.36.x through 1.38.x before 1.38.6, and 1.39.x before 1.39.3. An auto-block can occur for an untrusted X-Forwarded-For header. |
| 9.8 | 2023-03-31 | CVE-2023-1784 | cve | A vulnerability was found in jeecg-boot 3.5.0 and classified as critical. This issue affects some unknown processing of the component API Documentation. The manipulation leads t... |
| Page(s) : 1 ... 377 378 379 380 381 382 383 384 385 386 [387] 388 389 390 391 392 393 394 395 396 397 ... | Result(s) : 43291 |
