| Page(s) : 1 ... 418 419 420 421 422 423 424 425 426 427 [428] 429 430 431 432 433 434 435 436 437 438 ... | Result(s) : 325186 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-23 | CVE-2025-42602 | cve | This vulnerability exists in Meon KYC solutions due to improper handling of access and refresh tokens in certain API endpoints of authentication process. A remote attacker could... |
| N/A | 2025-04-23 | CVE-2025-42601 | cve | This vulnerability exists in Meon KYC solutions due to insufficient server-side validation of the Captcha in certain API endpoints. A remote attacker could exploit this vulnerab... |
| N/A | 2025-04-23 | CVE-2025-42600 | cve | This vulnerability exists in Meon KYC solutions due to missing restrictions on the number of incorrect One-Time Password (OTP) attempts through certain API endpoints of login pr... |
| N/A | 2025-04-23 | CVE-2025-3907 | cve | Cross-Site Request Forgery (CSRF) vulnerability in Drupal Search API Solr allows Cross Site Request Forgery.This issue affects Search API Solr: from 0.0.0 before 4.3.9. |
| N/A | 2025-04-23 | CVE-2025-3904 | cve | Vulnerability in Drupal Sportsleague.This issue affects Sportsleague: *.*. |
| N/A | 2025-04-23 | CVE-2025-3903 | cve | Vulnerability in Drupal UEditor - ?????.This issue affects UEditor - ?????: *.*. |
| N/A | 2025-04-23 | CVE-2025-3902 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Block Class allows Cross-Site Scripting (XSS).This issue a... |
| N/A | 2025-04-23 | CVE-2025-3901 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Bootstrap Site Alert allows Cross-Site Scripting (XSS).Thi... |
| N/A | 2025-04-23 | CVE-2025-3900 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Colorbox allows Cross-Site Scripting (XSS).This issue affe... |
| N/A | 2025-04-23 | CVE-2025-3673 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-3092.. Reason: This candidate is a reservation duplicate of CVE-2023-3092. Notes: All CVE u... |
| 7.5 | 2025-04-23 | CVE-2025-3530 | cve | The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to product price manipulation in all versions up to, and including, 5.1.2. This is due to a logic flaw invo... |
| 8.2 | 2025-04-23 | CVE-2025-3529 | cve | The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.1.2 via the 'file_url' ... |
| 9.8 | 2025-04-23 | CVE-2025-32969 | cve | XWiki is a generic wiki platform. In versions starting from 1.8 and prior to 15.10.16, 16.4.6, and 16.10.1, it is possible for a remote unauthenticated user to escape from the H... |
| 8.8 | 2025-04-23 | CVE-2025-32968 | cve | XWiki is a generic wiki platform. In versions starting from 1.6-milestone-1 to before 15.10.16, 16.4.6, and 16.10.1, it is possible for a user with SCRIPT right to escape from t... |
| 9.8 | 2025-04-23 | CVE-2025-32966 | cve | DataEase is an open-source BI tool alternative to Tableau. Prior to version 2.10.8, authenticated users can complete RCE through the backend JDBC link. This issue has been patch... |
| N/A | 2025-04-23 | CVE-2025-32818 | cve | A Null Pointer Dereference vulnerability in the SonicOS SSLVPN Virtual office interface allows a remote, unauthenticated attacker to crash the firewall, potentially leading to a... |
| N/A | 2025-04-23 | CVE-2025-29526 | cve | A Cross-Site Scripting (XSS) vulnerability in the search function of Q4 Inc Investor Relations Platform v5.147.1.2 allows attackers to execute arbitrary Javascript via injecting... |
| N/A | 2025-04-23 | CVE-2025-28169 | cve | BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to cend broadcasts to the manufacturer's cloud server unencrypted, allowing atta... |
| N/A | 2025-04-23 | CVE-2025-28028 | cve | TOTOLINK A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a buffer overflow ... |
| N/A | 2025-04-23 | CVE-2025-28025 | cve | TOTOLINK A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a buffer overflow ... |
| Page(s) : 1 ... 418 419 420 421 422 423 424 425 426 427 [428] 429 430 431 432 433 434 435 436 437 438 ... | Result(s) : 325186 |
