| Page(s) : 1 ... 409 410 411 412 413 414 415 416 417 418 [419] 420 421 422 423 424 425 426 427 428 429 ... | Result(s) : 299271 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.3 | 2025-04-19 | CVE-2025-3800 | cve | A vulnerability has been found in WCMS 11 and classified as critical. Affected by this vulnerability is an unknown functionality of the file app/controllers/AnonymousController.... |
| 7.3 | 2025-04-19 | CVE-2025-3799 | cve | A vulnerability, which was classified as critical, was found in WCMS 11. Affected is an unknown function of the file app/controllers/AnonymousController.php. The manipulation of... |
| 4.7 | 2025-04-19 | CVE-2025-3798 | cve | A vulnerability, which was classified as critical, has been found in WCMS 11. This issue affects the function sub of the file app/admin/AdvadminController.php of the component A... |
| 4.7 | 2025-04-19 | CVE-2025-3797 | cve | A vulnerability classified as critical was found in SeaCMS up to 13.3. This vulnerability affects unknown code of the file /admin_topic.php?action=delall. The manipulation of th... |
| 6.4 | 2025-04-19 | CVE-2025-3661 | cve | The SB Chart block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘className’ parameter in all versions up to, and including, 1.2.6 due to insufficien... |
| 8.8 | 2025-04-19 | CVE-2025-3404 | cve | The Download Manager plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the savePackage function in all versions up to, an... |
| 4.3 | 2025-04-19 | CVE-2025-3284 | cve | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up t... |
| 9.8 | 2025-04-19 | CVE-2025-3278 | cve | The UrbanGo Membership plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.0.4. This is due to the plugin allowing users who are regis... |
| 6.4 | 2025-04-19 | CVE-2025-3275 | cve | The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the TF E Slider widget in all versions up to, and including, 2.2.5 due ... |
| 7.5 | 2025-04-19 | CVE-2025-3103 | cve | The CLEVER - HTML5 Radio Player With History - Shoutcast and Icecast - Elementor Widget Addon plugin for WordPress is vulnerable to arbitrary file read due to insufficient file ... |
| 7.5 | 2025-04-19 | CVE-2025-2111 | cve | The Insert Headers And Footers plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.1. This is due to missing or incorrect ... |
| 7.5 | 2025-04-19 | CVE-2025-2010 | cve | The JobWP – Job Board, Job Listing, Career Page and Recruitment Plugin plugin for WordPress is vulnerable to SQL Injection via the 'jobwp_upload_resume' parameter in a... |
| 6.4 | 2025-04-19 | CVE-2025-1457 | cve | The Element Pack Addons for Elementor – Free Templates and Widgets for Your WordPress Websites plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Wrapper ... |
| 9.8 | 2025-04-19 | CVE-2025-1093 | cve | The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the generate_image function in all versions up to, and including, 1.... |
| N/A | 2025-04-19 | CVE-2024-13926 | cve | The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker to create a post containing a large number of tags, thereby exploiting a catastro... |
| N/A | 2025-04-19 | CVE-2023-30421 | cve | mystrtod in mjson 1.2.7 requires more than a billion iterations during processing of certain digit strings such as 8891110122900e913013935755114. |
| N/A | 2025-04-19 | CVE-2023-26819 | cve | cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}. |
| N/A | 2025-04-19 | CVE-2022-47112 | cve | 7-Zip 22.01 does not report an error for certain invalid xz files, involving stream flags and reserved bits. Some later versions are unaffected. |
| N/A | 2025-04-19 | CVE-2022-47111 | cve | 7-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits. Some later versions are unaffected. |
| 9.8 | 2025-04-19 | CVE-2021-4455 | cve | The Wordpress Plugin Smart Product Review plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, ... |
| Page(s) : 1 ... 409 410 411 412 413 414 415 416 417 418 [419] 420 421 422 423 424 425 426 427 428 429 ... | Result(s) : 299271 |
