| Page(s) : 1 ... 415 416 417 418 419 420 421 422 423 424 [425] 426 427 428 429 430 431 432 433 434 435 ... | Result(s) : 299281 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-18 | CVE-2025-0467 | cve | Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory. |
| N/A | 2025-04-18 | CVE-2024-57493 | cve | An issue in redoxOS relibc before commit 98aa4ea5 allows a local attacker to cause a denial of service via the setsockopt function. |
| N/A | 2025-04-18 | CVE-2024-53591 | cve | An issue in the login page of Seclore v3.27.5.0 allows attackers to bypass authentication via a brute force attack. |
| 6.3 | 2025-04-18 | CVE-2024-49808 | cve | IBM Sterling Connect:Direct Web Services 6.1.0, 6.2.0, and 6.3.0 could allow an authenticated user to spoof the identity of another user due to improper authorization which coul... |
| N/A | 2025-04-18 | CVE-2024-46089 | cve | 74cms |
| 6.3 | 2025-04-18 | CVE-2024-45651 | cve | IBM Sterling Connect:Direct Web Services 6.1.0, 6.2.0, and 6.3.0 does not invalidate session after a browser closure which could allow an authenticated user to impersonate ano... |
| N/A | 2025-04-18 | CVE-2024-41447 | cve | A stored cross-site scripting (XSS) vulnerability in Alkacon OpenCMS v17.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the auth... |
| N/A | 2025-04-18 | CVE-2024-29643 | cve | An issue in croogo v.3.0.2 allows an attacker to perform Host header injection via the feed.rss component. |
| N/A | 2025-04-18 | CVE-2024-26014 | cve | Rejected reason: Not used |
| 6.4 | 2025-04-18 | CVE-2024-13650 | cve | The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'PAFE Before After Image Comparison Slider' widget in all ve... |
| N/A | 2025-04-18 | CVE-2024-11421 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: The developer has disputed this as a vulnerability. Notes: All references and descriptions in this candid... |
| N/A | 2025-04-17 | CVE-2025-43717 | cve | In PEAR HTTP_Request2 before 2.7.0, multiple files in the tests directory, notably tests/_network/getparameters.php and tests/_network/postparameters.php, reflect any GET or POS... |
| N/A | 2025-04-17 | CVE-2025-43715 | cve | Nullsoft Scriptable Install System (NSIS) before 3.11 on Windows allows local users to escalate privileges to SYSTEM during an installation, because the temporary plugins direct... |
| N/A | 2025-04-17 | CVE-2025-43708 | cve | VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/se... |
| 6.5 | 2025-04-17 | CVE-2025-43015 | cve | In JetBrains RubyMine before 2025.1 remote Interpreter overwrote ports to listen on all interfaces |
| 6.5 | 2025-04-17 | CVE-2025-43014 | cve | In JetBrains Toolbox App before 2.6 the SSH plugin established connections without sufficient user confirmation |
| 7.5 | 2025-04-17 | CVE-2025-43013 | cve | In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible |
| N/A | 2025-04-17 | CVE-2025-43012 | cve | In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible |
| 6.5 | 2025-04-17 | CVE-2025-42921 | cve | In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin |
| N/A | 2025-04-17 | CVE-2025-39596 | cve | Weak Authentication vulnerability in Quentn.com GmbH Quentn WP allows Privilege Escalation. This issue affects Quentn WP: from n/a through 1.2.8. |
| Page(s) : 1 ... 415 416 417 418 419 420 421 422 423 424 [425] 426 427 428 429 430 431 432 433 434 435 ... | Result(s) : 299281 |
