Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 416 417 418 419 420 421 422 423 424 425 [426] 427 428 429 430 431 432 433 434 435 436 ... Result(s) : 325186

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
4.3 2025-04-24 CVE-2025-1284 cve The Woocommerce Automatic Order Printing | ( Formerly WooCommerce Google Cloud Print) plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up t...
N/A 2025-04-24 CVE-2025-0639 cve An issue has been discovered affecting service availability via issue preview in GitLab CE/EE affecting all versions from 16.7 before 17.9.7, 17.10 before 17.10.5, and 17.11 bef...
N/A 2025-04-24 CVE-2024-30148 cve Improper access control of endpoint in HCL Leap allows certain admin users to import applications from the server's filesystem.
N/A 2025-04-24 CVE-2024-30147 cve Multiple vectors in HCL Leap allow client-side script injection in the authoring environment and deployed applications.
N/A 2025-04-24 CVE-2024-30127 cve Missing "no cache" headers in HCL Leap permits sensitive data to be cached.
N/A 2025-04-24 CVE-2024-30114 cve Insufficient sanitization in HCL Leap allows client-side script injection in the authoring environment.
N/A 2025-04-24 CVE-2024-30113 cve Insufficient sanitization policy in HCL Leap allows client-side script injection in the deployed application through the HTML widget.
5.3 2025-04-24 CVE-2024-13307 cve The Reales WP - Real Estate WordPress Theme theme for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the 'reales...
N/A 2025-04-24 CVE-2024-12244 cve An issue has been discovered in access controls could allow users to view certain restricted project information even when related features are disabled in GitLab EE, affecting ...
N/A 2025-04-24 CVE-2023-45720 cve Insufficient default configuration in HCL Leap allows anonymous access to directory information.
N/A 2025-04-24 CVE-2023-37534 cve Insufficient URI protocol whitelist in HCL Leap allows script injection through query parameters.
N/A 2025-04-24 CVE-2023-37516 cve Missing "no cache" headers in HCL Leap permits user directory information to be cached.
N/A 2025-04-24 CVE-2022-44760 cve Unsafe default file type filter policy in HCL Leap allows execution of unsafe JavaScript in deployed applications.
N/A 2025-04-24 CVE-2022-44759 cve Improper sanitization of SVG files in HCL Leap allows client-side script injection in deployed applications.
5.3 2025-04-24 CVE-2021-47664 cve Due to improper authentication mechanism an unauthenticated remote attacker can enumerate valid usernames.
8.1 2025-04-24 CVE-2021-47663 cve Due to improperĀ JSON Web Tokens implementation an unauthenticated remote attacker can guess a valid session ID and therefore impersonate a user to gain full access.
7.5 2025-04-24 CVE-2021-47662 cve Due to missing authorization an unauthenticated remote attackerĀ can cause a DoS attack by connecting via HTTPS and triggering the shutdown button.
N/A 2025-04-23 CVE-2025-46400 cve In xfig diagramming tool, a segmentation fault while running fig2dev allows an attacker to availability via local input manipulation via read_arcobject function.
N/A 2025-04-23 CVE-2025-46399 cve A flaw was found in fig2dev. This vulnerability allows availability via local input manipulation via genge_itp_spline function.
N/A 2025-04-23 CVE-2025-46398 cve In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via read_objects function.
Page(s) : 1 ... 416 417 418 419 420 421 422 423 424 425 [426] 427 428 429 430 431 432 433 434 435 436 ... Result(s) : 325186