| Page(s) : 1 ... 409 410 411 412 413 414 415 416 417 418 [419] 420 421 422 423 424 425 426 427 428 429 ... | Result(s) : 325083 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-24 | CVE-2025-39360 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in everestthemes Grace Mag allows PHP Local File ... |
| N/A | 2025-04-24 | CVE-2025-39359 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Code Work Web CWW Portfolio allows PHP Local F... |
| N/A | 2025-04-24 | CVE-2025-3872 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Centreon centreon-web (User configuration form modules) allows SQ... |
| 6.4 | 2025-04-24 | CVE-2025-3832 | cve | The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘successredirect’ parameter in all versions up to, and including, 6.7 due to insufficient ... |
| 4.2 | 2025-04-24 | CVE-2025-3793 | cve | The Buddypress Force Password Change plugin for WordPress is vulnerable to authenticated account takeover due to the plugin not properly validating a user's identity prior ... |
| 8.3 | 2025-04-24 | CVE-2025-3776 | cve | The Verification SMS with TargetSMS plugin for WordPress is vulnerable to limited Remote Code Execution in all versions up to, and including, 1.5 via the 'targetvr_ajax_han... |
| 8.8 | 2025-04-24 | CVE-2025-3761 | cve | The My Tickets – Accessible Event Ticketing plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.0.16. This is due to the mt_save_p... |
| 6.4 | 2025-04-24 | CVE-2025-3749 | cve | The Breeze Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘cal_size’ parameter in all versions up to, and including, 1.2.3 due to insufficient... |
| 8.8 | 2025-04-24 | CVE-2025-3607 | cve | The Frontend Login and Registration Blocks plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.0.7. This is d... |
| 9.8 | 2025-04-24 | CVE-2025-3604 | cve | The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.0. This is due to the plugin not prop... |
| 9.8 | 2025-04-24 | CVE-2025-3603 | cve | The Flynax Bridge plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.0. This is due to the plugin not prop... |
| N/A | 2025-04-24 | CVE-2025-35965 | cve | Mattermost versions 10.4.x |
| 4.4 | 2025-04-24 | CVE-2025-3435 | cve | The Mang Board WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the board_header and board_footer parameters in all versions up to, and including, 1.8.6 ... |
| 7.2 | 2025-04-24 | CVE-2025-3300 | cve | The WPMasterToolKit (WPMTK) – All in one plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.5.2. This makes it possible for... |
| N/A | 2025-04-24 | CVE-2025-32921 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WPoperation Arrival allows PHP Local File Incl... |
| 6.5 | 2025-04-24 | CVE-2025-3280 | cve | The ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes plugin for WordPress is vulnerable to SQL Injection via the 'attribute_value_filter' parameter in... |
| N/A | 2025-04-24 | CVE-2025-32730 | cve | Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerabili... |
| 9.8 | 2025-04-24 | CVE-2025-31324 | cve | SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries ... |
| 8.8 | 2025-04-24 | CVE-2025-3101 | cve | The Configurator Theme Core plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.7. This is due to the plugin not properly valida... |
| 9.1 | 2025-04-24 | CVE-2025-3065 | cve | The Database Toolset plugin is vulnerable to arbitrary file deletion due to insufficient file path validation in a function in all versions up to, and including, 1.8.4. This mak... |
| Page(s) : 1 ... 409 410 411 412 413 414 415 416 417 418 [419] 420 421 422 423 424 425 426 427 428 429 ... | Result(s) : 325083 |
