| Page(s) : 1 ... 387 388 389 390 391 392 393 394 395 396 [397] 398 399 400 401 402 403 404 405 406 407 ... | Result(s) : 299230 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-24 | CVE-2025-46438 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in warmwhisky GTDB Guitar Tuners allows Stored XSS. This issue affec... |
| N/A | 2025-04-24 | CVE-2025-46436 | cve | Cross-Site Request Forgery (CSRF) vulnerability in Sebastian Echeverry SCSS-Library allows Cross Site Request Forgery. This issue affects SCSS-Library: from n/a through 0.4.1. |
| N/A | 2025-04-24 | CVE-2025-46435 | cve | Cross-Site Request Forgery (CSRF) vulnerability in Yash Binani Time Based Greeting allows Stored XSS. This issue affects Time Based Greeting: from n/a through 2.2.2. |
| N/A | 2025-04-24 | CVE-2025-46421 | cve | A flaw was found in libsoup. When libsoup clients encounter an HTTP redirect, they mistakenly send the HTTP Authorization header to the new host that the redirection points to. ... |
| N/A | 2025-04-24 | CVE-2025-46420 | cve | A flaw was found in libsoup. It is vulnerable to memory leaks in the soup_header_parse_quality_list() function when parsing a quality list that contains elements with all zeroes. |
| N/A | 2025-04-24 | CVE-2025-46419 | cve | Westermo WeOS 5 through 5.23.0 allows a reboot via a malformed ESP packet. |
| N/A | 2025-04-24 | CVE-2025-46417 | cve | The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.get_server_certificate can exfiltrate data via DNS after deserialization. |
| N/A | 2025-04-24 | CVE-2025-46381 | cve | Rejected reason: Not used |
| N/A | 2025-04-24 | CVE-2025-46380 | cve | Rejected reason: Not used |
| N/A | 2025-04-24 | CVE-2025-46379 | cve | Rejected reason: Not used |
| N/A | 2025-04-24 | CVE-2025-46378 | cve | Rejected reason: Not used |
| N/A | 2025-04-24 | CVE-2025-46377 | cve | Rejected reason: Not used |
| N/A | 2025-04-24 | CVE-2025-46376 | cve | Rejected reason: Not used |
| N/A | 2025-04-24 | CVE-2025-46375 | cve | Rejected reason: Not used |
| N/A | 2025-04-24 | CVE-2025-46374 | cve | Rejected reason: Not used |
| N/A | 2025-04-24 | CVE-2025-46275 | cve | WGS-80HPT-V2 and WGS-4215-8T2S are missing authentication that could allow an attacker to create an administrator account without knowing any existing credentials. |
| N/A | 2025-04-24 | CVE-2025-46274 | cve | UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to read, manipulate and create entries in the managed database. |
| N/A | 2025-04-24 | CVE-2025-46273 | cve | UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices. |
| N/A | 2025-04-24 | CVE-2025-46272 | cve | WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection attack that could allow an unauthenticated attacker to execute OS commands on the host system. |
| N/A | 2025-04-24 | CVE-2025-46271 | cve | UNI-NMS-Lite is vulnerable to a command injection attack that could allow an unauthenticated attacker to read or manipulate device data. |
| Page(s) : 1 ... 387 388 389 390 391 392 393 394 395 396 [397] 398 399 400 401 402 403 404 405 406 407 ... | Result(s) : 299230 |
