| Page(s) : 1 ... 30 31 32 33 34 35 36 37 38 39 [40] 41 42 43 44 45 46 47 48 49 50 ... | Result(s) : 287478 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-26 | CVE-2025-2600 | cve | Improper authorization in the variable component in Devolutions Remote Desktop Manager on Windows allows an authenticated password to use the ELEVATED_PASSWORD variable even tho... |
| N/A | 2025-03-26 | CVE-2025-30351 | cve | Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 10.10.0 and prior to version 11.5.0, a suspended user can use the token gene... |
| N/A | 2025-03-26 | CVE-2025-30352 | cve | Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.0.0-alpha.4 and prior to version 11.5.0, the `search` query parameter allo... |
| N/A | 2025-03-26 | CVE-2025-30353 | cve | Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 9.12.0 and prior to version 11.5.0, when a Flow with the "Webhook" trigger a... |
| N/A | 2025-03-26 | CVE-2025-25535 | cve | HTTP Response Manipulation in SCRIPT CASE v.1.0.002 Build7 allows a remote attacker to escalate privileges via a crafted request. |
| N/A | 2025-03-26 | CVE-2025-26001 | cve | Telesquare TLR-2005KSH 1.1.4 is vulnerable to Information Disclosure via the parameter getUserNamePassword. |
| N/A | 2025-03-26 | CVE-2025-26002 | cve | Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setSyncTimeHost. |
| N/A | 2025-03-26 | CVE-2025-26003 | cve | Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized command execution vulnerability when requesting the admin.cgi parameter with setAutorest. |
| N/A | 2025-03-26 | CVE-2025-26004 | cve | Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack buffer overflow vulnerability when requesting admin.cgi parameter with setDdns. |
| N/A | 2025-03-26 | CVE-2025-29322 | cve | A cross-site scripting (XSS) vulnerability in ScriptCase before v1.0.003 - Build 3 allows attackers to execute arbitrary code via a crafted payload to the "Connection Name" in t... |
| 6.4 | 2025-03-26 | CVE-2024-13411 | cve | The Zapier for WordPress plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.5.1 via the updated_user() function. This make... |
| 7.2 | 2025-03-26 | CVE-2024-13889 | cve | The WordPress Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 0.8.3 via deserialization of untrusted input in the '... |
| 6.4 | 2025-03-26 | CVE-2025-1312 | cve | The Ultimate Blocks – WordPress Blocks Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'buttonTextColor’ parameter in all versions up to, a... |
| 4.9 | 2025-03-26 | CVE-2025-1769 | cve | The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.5.0... |
| 2.7 | 2025-03-26 | CVE-2025-1911 | cve | The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validatio... |
| 7.6 | 2025-03-26 | CVE-2025-1912 | cve | The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and includin... |
| 7.2 | 2025-03-26 | CVE-2025-1913 | cve | The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.5.... |
| 8.8 | 2025-03-26 | CVE-2025-2110 | cve | The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to missing capability ch... |
| 5.7 | 2025-03-26 | CVE-2025-2228 | cve | The Responsive Addons for Elementor – Free Elementor Addons Plugin and Elementor Templates plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions u... |
| 4.7 | 2025-03-26 | CVE-2022-39163 | cve | IBM Cognos Controller 11.0.0 through 11.1.0 is vulnerable to a Client-Side Desync (CSD) attack where an attacker could exploit a desynchronized browser connection that could lea... |
| Page(s) : 1 ... 30 31 32 33 34 35 36 37 38 39 [40] 41 42 43 44 45 46 47 48 49 50 ... | Result(s) : 287478 |
