Page(s) : 1 ... 416 417 418 419 420 421 422 423 424 425 [426] 427 428 429 430 431 432 433 434 435 436 ... | Result(s) : 325186 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
4.3 | 2025-04-24 | CVE-2025-1284 | cve | The Woocommerce Automatic Order Printing | ( Formerly WooCommerce Google Cloud Print) plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up t... |
N/A | 2025-04-24 | CVE-2025-0639 | cve | An issue has been discovered affecting service availability via issue preview in GitLab CE/EE affecting all versions from 16.7 before 17.9.7, 17.10 before 17.10.5, and 17.11 bef... |
N/A | 2025-04-24 | CVE-2024-30148 | cve | Improper access control of endpoint in HCL Leap allows certain admin users to import applications from the server's filesystem. |
N/A | 2025-04-24 | CVE-2024-30147 | cve | Multiple vectors in HCL Leap allow client-side script injection in the authoring environment and deployed applications. |
N/A | 2025-04-24 | CVE-2024-30127 | cve | Missing "no cache" headers in HCL Leap permits sensitive data to be cached. |
N/A | 2025-04-24 | CVE-2024-30114 | cve | Insufficient sanitization in HCL Leap allows client-side script injection in the authoring environment. |
N/A | 2025-04-24 | CVE-2024-30113 | cve | Insufficient sanitization policy in HCL Leap allows client-side script injection in the deployed application through the HTML widget. |
5.3 | 2025-04-24 | CVE-2024-13307 | cve | The Reales WP - Real Estate WordPress Theme theme for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the 'reales... |
N/A | 2025-04-24 | CVE-2024-12244 | cve | An issue has been discovered in access controls could allow users to view certain restricted project information even when related features are disabled in GitLab EE, affecting ... |
N/A | 2025-04-24 | CVE-2023-45720 | cve | Insufficient default configuration in HCL Leap allows anonymous access to directory information. |
N/A | 2025-04-24 | CVE-2023-37534 | cve | Insufficient URI protocol whitelist in HCL Leap allows script injection through query parameters. |
N/A | 2025-04-24 | CVE-2023-37516 | cve | Missing "no cache" headers in HCL Leap permits user directory information to be cached. |
N/A | 2025-04-24 | CVE-2022-44760 | cve | Unsafe default file type filter policy in HCL Leap allows execution of unsafe JavaScript in deployed applications. |
N/A | 2025-04-24 | CVE-2022-44759 | cve | Improper sanitization of SVG files in HCL Leap allows client-side script injection in deployed applications. |
5.3 | 2025-04-24 | CVE-2021-47664 | cve | Due to improper authentication mechanism an unauthenticated remote attacker can enumerate valid usernames. |
8.1 | 2025-04-24 | CVE-2021-47663 | cve | Due to improperĀ JSON Web Tokens implementation an unauthenticated remote attacker can guess a valid session ID and therefore impersonate a user to gain full access. |
7.5 | 2025-04-24 | CVE-2021-47662 | cve | Due to missing authorization an unauthenticated remote attackerĀ can cause a DoS attack by connecting via HTTPS and triggering the shutdown button. |
N/A | 2025-04-23 | CVE-2025-46400 | cve | In xfig diagramming tool, a segmentation fault while running fig2dev allows an attacker to availability via local input manipulation via read_arcobject function. |
N/A | 2025-04-23 | CVE-2025-46399 | cve | A flaw was found in fig2dev. This vulnerability allows availability via local input manipulation via genge_itp_spline function. |
N/A | 2025-04-23 | CVE-2025-46398 | cve | In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via read_objects function. |
Page(s) : 1 ... 416 417 418 419 420 421 422 423 424 425 [426] 427 428 429 430 431 432 433 434 435 436 ... | Result(s) : 325186 |