| Page(s) : 1 ... 396 397 398 399 400 401 402 403 404 405 [406] 407 408 409 410 411 412 413 414 415 416 ... | Result(s) : 43309 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-03-06 | CVE-2022-4328 | cve | The WooCommerce Checkout Field Manager WordPress plugin before 18.0 does not validate files to be uploaded, which could allow unauthenticated attackers to upload arbitrary files... |
| 9.8 | 2023-03-06 | CVE-2023-22336 | cve | Path traversal vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to upload a specially crafted file to an... |
| 9.8 | 2023-03-06 | CVE-2023-22344 | cve | Use of hard-coded credentials vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to obtain the password of... |
| 9.8 | 2023-03-05 | CVE-2021-4329 | cve | A vulnerability, which was classified as critical, has been found in json-logic-js 2.0.0. Affected by this issue is some unknown functionality of the file logic.js. The manipula... |
| 9.8 | 2023-03-05 | CVE-2008-10003 | cve | A vulnerability was found in iGamingModules flashgames 1.1.0. It has been classified as critical. Affected is an unknown function of the file game.php. The manipulation of the a... |
| 9.8 | 2023-03-04 | CVE-2014-125091 | cve | A vulnerability has been found in codepeople cp-polls Plugin 1.0.1 on WordPress and classified as critical. This vulnerability affects unknown code of the file cp-admin-int-mess... |
| 9.8 | 2023-03-03 | CVE-2023-26779 | cve | CleverStupidDog yf-exam v 1.8.0 is vulnerable to Deserialization which can lead to remote code execution (RCE). |
| 9.1 | 2023-03-03 | CVE-2023-27290 | cve | Docker based datastores for IBM Instana (IBM Observability with Instana 239-0 through 239-2, 241-0 through 241-2, and 243-0) do not currently require authentication. Due to this... |
| 9.8 | 2023-03-03 | CVE-2023-24641 | cve | Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateview.php. |
| 9.8 | 2023-03-03 | CVE-2023-24642 | cve | Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php. |
| 9.8 | 2023-03-03 | CVE-2023-24643 | cve | Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php. |
| 9.8 | 2023-03-03 | CVE-2022-46973 | cve | Report v0.9.8.6 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability. |
| 9.8 | 2023-03-03 | CVE-2023-27574 | cve | ShadowsocksX-NG 1.10.0 signs with com.apple.security.get-task-allow entitlements because of CODE_SIGNING_INJECT_BASE_ENTITLEMENTS. |
| 9.8 | 2023-03-03 | CVE-2023-20078 | cve | Multiple vulnerabilities in the web-based management interface of certain Cisco IP Phones could allow an unauthenticated, remote attacker to execute arbitrary code or cause a de... |
| 9.8 | 2023-03-03 | CVE-2022-45551 | cve | An issue discovered in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to escalate privileges via WGET command to the Network Diagnosis endpoint. |
| 9.8 | 2023-03-03 | CVE-2022-45553 | cve | An issue discovered in Shenzhen Zhibotong Electronics WBT WE1626 Router v 21.06.18 allows attacker to execute arbitrary commands via serial connection to the UART port. |
| 9.6 | 2023-03-03 | CVE-2023-0957 | cve | An issue was discovered in Gitpod versions prior to release-2022.11.2.16. There is a Cross-Site WebSocket Hijacking (CSWSH) vulnerability that allows attackers to make WebSocket... |
| 9.8 | 2023-03-02 | CVE-2021-4328 | cve | A vulnerability has been found in ???CMS and classified as critical. Affected by this vulnerability is the function goods_detail of the file ApiController.class.php. The manipul... |
| 9.9 | 2023-03-02 | CVE-2023-26055 | cve | XWiki Commons are technical libraries common to several other top level XWiki projects. Starting in version 3.1-milestone-1, any user can edit their own profile and inject code,... |
| 9.8 | 2023-03-02 | CVE-2022-46501 | cve | Accruent LLC Maintenance Connection 2021 (all) & 2022.2 was discovered to contain a SQL injection vulnerability via the E-Mail to Work Order function. |
| Page(s) : 1 ... 396 397 398 399 400 401 402 403 404 405 [406] 407 408 409 410 411 412 413 414 415 416 ... | Result(s) : 43309 |
