| Page(s) : 1 ... 389 390 391 392 393 394 395 396 397 398 [399] 400 401 402 403 404 405 406 407 408 409 ... | Result(s) : 299230 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-24 | CVE-2025-39390 | cve | Missing Authorization vulnerability in magepeopleteam Booking and Rental Manager allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Booking and ... |
| N/A | 2025-04-24 | CVE-2025-39387 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WPoperation Opstore allows PHP Local File Incl... |
| N/A | 2025-04-24 | CVE-2025-39385 | cve | Missing Authorization vulnerability in VW Themes Sirat allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sirat: from n/a through 1.5.1. |
| N/A | 2025-04-24 | CVE-2025-39384 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in cedcommerce Product Lister for eBay allows PHP... |
| N/A | 2025-04-24 | CVE-2025-39383 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Code Work Web Xews Lite allows PHP Local File ... |
| N/A | 2025-04-24 | CVE-2025-39382 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in danielpataki ACF: Google Font Selector allows Reflected XSS. This... |
| N/A | 2025-04-24 | CVE-2025-39381 | cve | Cross-Site Request Forgery (CSRF) vulnerability in Kiotviet KiotViet Sync allows Stored XSS. This issue affects KiotViet Sync: from n/a through 1.8.4. |
| N/A | 2025-04-24 | CVE-2025-39379 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Capturly Capturly allows PHP Local File Inclus... |
| N/A | 2025-04-24 | CVE-2025-39378 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Holest Engineering Spreadsheet Price Changer f... |
| N/A | 2025-04-24 | CVE-2025-39377 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in weDevs Appsero Helper allows SQL Injection. This issue affects Ap... |
| N/A | 2025-04-24 | CVE-2025-39360 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in everestthemes Grace Mag allows PHP Local File ... |
| N/A | 2025-04-24 | CVE-2025-39359 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Code Work Web CWW Portfolio allows PHP Local F... |
| N/A | 2025-04-24 | CVE-2025-3872 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Centreon centreon-web (User configuration form modules) allows SQ... |
| 6.4 | 2025-04-24 | CVE-2025-3832 | cve | The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘successredirect’ parameter in all versions up to, and including, 6.7 due to insufficient ... |
| 4.2 | 2025-04-24 | CVE-2025-3793 | cve | The Buddypress Force Password Change plugin for WordPress is vulnerable to authenticated account takeover due to the plugin not properly validating a user's identity prior ... |
| 8.3 | 2025-04-24 | CVE-2025-3776 | cve | The Verification SMS with TargetSMS plugin for WordPress is vulnerable to limited Remote Code Execution in all versions up to, and including, 1.5 via the 'targetvr_ajax_han... |
| 8.8 | 2025-04-24 | CVE-2025-3761 | cve | The My Tickets – Accessible Event Ticketing plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.0.16. This is due to the mt_save_p... |
| 6.4 | 2025-04-24 | CVE-2025-3749 | cve | The Breeze Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘cal_size’ parameter in all versions up to, and including, 1.2.3 due to insufficient... |
| 8.8 | 2025-04-24 | CVE-2025-3607 | cve | The Frontend Login and Registration Blocks plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.0.7. This is d... |
| 9.8 | 2025-04-24 | CVE-2025-3604 | cve | The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.0. This is due to the plugin not prop... |
| Page(s) : 1 ... 389 390 391 392 393 394 395 396 397 398 [399] 400 401 402 403 404 405 406 407 408 409 ... | Result(s) : 299230 |
