| Page(s) : 1 ... 390 391 392 393 394 395 396 397 398 399 [400] 401 402 403 404 405 406 407 408 409 410 ... | Result(s) : 299230 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-04-24 | CVE-2025-3603 | cve | The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.0. This is due to the plugin not prop... |
| N/A | 2025-04-24 | CVE-2025-35965 | cve | Mattermost versions 10.4.x |
| 4.4 | 2025-04-24 | CVE-2025-3435 | cve | The Mang Board WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the board_header and board_footer parameters in all versions up to, and including, 1.8.6 ... |
| 7.2 | 2025-04-24 | CVE-2025-3300 | cve | The WPMasterToolKit (WPMTK) – All in one plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.5.2. This makes it possible for... |
| N/A | 2025-04-24 | CVE-2025-32921 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WPoperation Arrival allows PHP Local File Incl... |
| 6.5 | 2025-04-24 | CVE-2025-3280 | cve | The ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes plugin for WordPress is vulnerable to SQL Injection via the 'attribute_value_filter' parameter in... |
| N/A | 2025-04-24 | CVE-2025-32730 | cve | Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerabili... |
| 9.8 | 2025-04-24 | CVE-2025-31324 | cve | SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries ... |
| 8.8 | 2025-04-24 | CVE-2025-3101 | cve | The Configurator Theme Core plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.7. This is due to the plugin not properly valida... |
| 9.1 | 2025-04-24 | CVE-2025-3065 | cve | The Database Toolset plugin is vulnerable to arbitrary file deletion due to insufficient file path validation in a function in all versions up to, and including, 1.8.4. This mak... |
| 8.8 | 2025-04-24 | CVE-2025-3058 | cve | The Xelion Webchat plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the xwc_sav... |
| N/A | 2025-04-24 | CVE-2025-30409 | cve | Denial of service due to allocation of resources without limits. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904. |
| N/A | 2025-04-24 | CVE-2025-30408 | cve | Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904, Acronis Cyber... |
| N/A | 2025-04-24 | CVE-2025-29568 | cve | A vulnerability has been discovered in the code-projects Online Class and Exam Scheduling System 1.0. The issue affects some unknown features in the file /Scheduling/pages/class... |
| N/A | 2025-04-24 | CVE-2025-29529 | cve | ITC Systems Multiplan/Matrix OneCard platform v3.7.4.1002 was discovered to contain a SQL injection vulnerability via the component Forgotpassword.aspx. |
| N/A | 2025-04-24 | CVE-2025-27820 | cve | A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team... |
| N/A | 2025-04-24 | CVE-2025-27581 | cve | NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 allows users who lack the InET role to access the InET module via direct requests to known end... |
| N/A | 2025-04-24 | CVE-2025-27580 | cve | NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 generates predictable tokens (that depend on username, time, and the fixed 7Dl9#dj- string) an... |
| N/A | 2025-04-24 | CVE-2025-26382 | cve | Under certain circumstances the iSTAR Configuration Utility (ICU) tool could have a buffer overflow issue |
| 6.4 | 2025-04-24 | CVE-2025-2579 | cve | The Lottie Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via File uploads in all versions up to, and including, 1.1.8 due to insufficient input saniti... |
| Page(s) : 1 ... 390 391 392 393 394 395 396 397 398 399 [400] 401 402 403 404 405 406 407 408 409 410 ... | Result(s) : 299230 |
