| Page(s) : 1 ... 395 396 397 398 399 400 401 402 403 404 [405] 406 407 408 409 410 411 412 413 414 415 ... | Result(s) : 299257 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-23 | CVE-2025-3902 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Block Class allows Cross-Site Scripting (XSS).This issue a... |
| N/A | 2025-04-23 | CVE-2025-3901 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Bootstrap Site Alert allows Cross-Site Scripting (XSS).Thi... |
| N/A | 2025-04-23 | CVE-2025-3900 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Colorbox allows Cross-Site Scripting (XSS).This issue affe... |
| N/A | 2025-04-23 | CVE-2025-3673 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-3092.. Reason: This candidate is a reservation duplicate of CVE-2023-3092. Notes: All CVE u... |
| 7.5 | 2025-04-23 | CVE-2025-3530 | cve | The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to product price manipulation in all versions up to, and including, 5.1.2. This is due to a logic flaw invo... |
| 8.2 | 2025-04-23 | CVE-2025-3529 | cve | The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.1.2 via the 'file_url' ... |
| 9.8 | 2025-04-23 | CVE-2025-32969 | cve | XWiki is a generic wiki platform. In versions starting from 1.8 and prior to 15.10.16, 16.4.6, and 16.10.1, it is possible for a remote unauthenticated user to escape from the H... |
| 8.8 | 2025-04-23 | CVE-2025-32968 | cve | XWiki is a generic wiki platform. In versions starting from 1.6-milestone-1 to before 15.10.16, 16.4.6, and 16.10.1, it is possible for a user with SCRIPT right to escape from t... |
| 9.8 | 2025-04-23 | CVE-2025-32966 | cve | DataEase is an open-source BI tool alternative to Tableau. Prior to version 2.10.8, authenticated users can complete RCE through the backend JDBC link. This issue has been patch... |
| N/A | 2025-04-23 | CVE-2025-32818 | cve | A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a... |
| N/A | 2025-04-23 | CVE-2025-29526 | cve | A Cross-Site Scripting (XSS) vulnerability in the search function of Q4 Inc Investor Relations Platform v5.147.1.2 allows attackers to execute arbitrary Javascript via injecting... |
| N/A | 2025-04-23 | CVE-2025-28169 | cve | BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to cend broadcasts to the manufacturer's cloud server unencrypted, allowing atta... |
| N/A | 2025-04-23 | CVE-2025-28028 | cve | TOTOLINK A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a buffer overflow ... |
| N/A | 2025-04-23 | CVE-2025-28025 | cve | TOTOLINK A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a buffer overflow ... |
| N/A | 2025-04-23 | CVE-2025-28022 | cve | TOTOLINK A810R V4.1.2cu.5182_B20201026 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v25 parameter. |
| N/A | 2025-04-23 | CVE-2025-28021 | cve | TOTOLINK A810R V4.1.2cu.5182_B20201026 was found to contain a buffer overflow vulnerability in the downloadFile.cgi through the v14 and v3 parameters |
| N/A | 2025-04-23 | CVE-2025-28020 | cve | TOTOLINK A800R V4.1.2cu.5137_B20200730 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v25 parameter. |
| N/A | 2025-04-23 | CVE-2025-28019 | cve | TOTOLINK A800R V4.1.2cu.5137_B20200730 was found to contain a buffer overflow vulnerability in the downloadFile.cgi component |
| N/A | 2025-04-23 | CVE-2025-28018 | cve | TOTOLINK A800R V4.1.2cu.5137_B20200730 was found to contain a buffer overflow vulnerability in downloadFile.cgi through the v14 parameter. |
| N/A | 2025-04-23 | CVE-2025-28017 | cve | TOTOLINK A800R V4.1.2cu.5032_B20200408 is vulnerable to Command Injection in downloadFile.cgi via the QUERY_STRING parameter. |
| Page(s) : 1 ... 395 396 397 398 399 400 401 402 403 404 [405] 406 407 408 409 410 411 412 413 414 415 ... | Result(s) : 299257 |
