| Page(s) : 1 ... 387 388 389 390 391 392 393 394 395 396 [397] 398 399 400 401 402 403 404 405 406 407 ... | Result(s) : 324964 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2025-04-28 | CVE-2025-3991 | cve | A vulnerability, which was classified as critical, was found in TOTOLINK N150RT 3.4.0-B20190525. This affects an unknown part of the file /boafrm/formWdsEncrypt. The manipulatio... |
| N/A | 2025-04-28 | CVE-2025-39367 | cve | Missing Authorization vulnerability in SeventhQueen Kleo.This issue affects Kleo: from n/a before 5.4.4. |
| 6.1 | 2025-04-28 | CVE-2025-3706 | cve | The eHRMS from 104 Corporation has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's... |
| 8.8 | 2025-04-28 | CVE-2025-34491 | cve | GFI MailEssentials prior to version 21.8 is vulnerable to a .NET deserialization issue. A remote and authenticated attacker can execute arbitrary code by sending crafted seriali... |
| 6.5 | 2025-04-28 | CVE-2025-34490 | cve | GFI MailEssentials prior to version 21.8 is vulnerable to an XML External Entity (XXE) issue. An authenticated and remote attacker can send crafted HTTP requests to read arbitra... |
| 7.8 | 2025-04-28 | CVE-2025-34489 | cve | GFI MailEssentials prior to version 21.8 is vulnerable to a local privilege escalation issue. A local attacker can escalate to NT Authority/SYSTEM by sending a crafted serialize... |
| N/A | 2025-04-28 | CVE-2025-32472 | cve | The multiScan and picoScan are vulnerable to a denial-of-service (DoS) attack. A remote attacker can exploit this vulnerability by conducting a Slowloris-type attack, causing th... |
| N/A | 2025-04-28 | CVE-2025-32471 | cve | The device’s passwords have not been adequately salted, making them vulnerable to password extraction attacks. |
| N/A | 2025-04-28 | CVE-2025-32470 | cve | A remote unauthenticated attacker may be able to change the IP adress of the device, and therefore affecting the availability of the device. |
| 7.8 | 2025-04-28 | CVE-2025-3224 | cve | A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0 could allow a local, low-privileged attacker to escalate privileges to SYSTEM. Durin... |
| 9.1 | 2025-04-28 | CVE-2025-3200 | cve | An unauthenticated remote attacker could exploit the used, insecure TLS 1.0 and TLS 1.1 protocols to intercept and manipulate encrypted communications between the Com-Server and... |
| 9.8 | 2025-04-28 | CVE-2025-31651 | cve | Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. For a subset of unlikely rewrite rule configurations, it was possible for a specia... |
| 7.5 | 2025-04-28 | CVE-2025-31650 | cve | Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request w... |
| N/A | 2025-04-28 | CVE-2025-31144 | cve | Quick Agent V3 and Quick Agent V2 contain an issue with improper restriction of communication channel to intended endpoints. If exploited, a remote unauthenticated attacker may ... |
| N/A | 2025-04-28 | CVE-2025-27937 | cve | Quick Agent V3 and Quick Agent V2 contain an issue with improper limitation of a pathname to a restricted directory ('Path Traversal'). If exploited, an arbitrary file... |
| N/A | 2025-04-28 | CVE-2025-26692 | cve | Quick Agent V3 and Quick Agent V2 contain an issue with improper limitation of a pathname to a restricted directory ('Path Traversal'). If exploited, arbitrary code ma... |
| N/A | 2025-04-28 | CVE-2025-25776 | cve | Cross-Site Scripting (XSS) vulnerability exists in the User Registration and User Profile features of Codeastro Bus Ticket Booking System v1.0 allows an attacker to execute arbi... |
| 3.4 | 2025-04-28 | CVE-2025-23377 | cve | Dell PowerProtect Data Manager Reporting, version(s) 19.17, 19.18 contain(s) an Improper Encoding or Escaping of Output vulnerability. A high privileged attacker with local acce... |
| 4.4 | 2025-04-28 | CVE-2025-23376 | cve | Dell PowerProtect Data Manager Reporting, version(s) 19.16, 19.17, 19.18, contain(s) an Improper Neutralization of Special Elements Used in a Template Engine vulnerability. A hi... |
| 7.8 | 2025-04-28 | CVE-2025-23375 | cve | Dell PowerProtect Data Manager Reporting, version(s) 19.17, contain(s) an Incorrect Use of Privileged APIs vulnerability. A low privileged attacker with local access could poten... |
| Page(s) : 1 ... 387 388 389 390 391 392 393 394 395 396 [397] 398 399 400 401 402 403 404 405 406 407 ... | Result(s) : 324964 |
