Page(s) : 1 ... 422 423 424 425 426 427 428 429 430 431 [432] 433 434 435 436 437 438 439 440 441 442 ... | Result(s) : 43310 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
9.8 | 2023-01-23 | CVE-2022-4305 | cve | The Login as User or Customer WordPress plugin before 3.3 lacks authorization checks to ensure that users are allowed to log in as another one, which could allow unauthenticated... |
9.8 | 2023-01-23 | CVE-2022-4383 | cve | The CBX Petition for WordPress plugin through 1.0.3 does not properly sanitize and escape a parameter before using it in a SQL statement via an AJAX action available to unauthen... |
9.8 | 2023-01-23 | CVE-2022-4693 | cve | The User Verification WordPress plugin before 1.0.94 was affected by an Auth Bypass security vulnerability. To bypass authentication, we only need to know the user’s username. D... |
9.8 | 2023-01-22 | CVE-2023-0435 | cve | Excessive Attack Surface in GitHub repository pyload/pyload prior to 0.5.0b3.dev41. |
9.8 | 2023-01-21 | CVE-2023-22884 | cve | Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Apache Airflow, Apache Software Foundat... |
9.8 | 2023-01-20 | CVE-2020-21152 | cve | SQL Injection vulnerability in inxedu 2.0.6 allows attackers to execute arbitrary commands via the functionIds parameter to /saverolefunction. |
9.8 | 2023-01-20 | CVE-2020-22653 | cve | In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gatewa... |
9.8 | 2023-01-20 | CVE-2020-22654 | cve | In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gatewa... |
9.1 | 2023-01-20 | CVE-2020-22657 | cve | In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gatewa... |
9.8 | 2023-01-20 | CVE-2020-22658 | cve | In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gatewa... |
9.8 | 2023-01-20 | CVE-2020-23256 | cve | An issue was discovered in Electerm 1.3.22, allows attackers to execute arbitrary code via unverified request to electerms service. |
9.8 | 2023-01-20 | CVE-2020-29297 | cve | Multiple SQL Injection vulnerabilities in tourist5 Online-food-ordering-system 1.0. |
9.8 | 2023-01-20 | CVE-2022-48120 | cve | SQL Injection vulnerability in kishan0725 Hospital Management System thru commit 4770d740f2512693ef8fd9aa10a8d17f79fad9bd (on March 13, 2021), allows attackers to execute arbitr... |
9.8 | 2023-01-20 | CVE-2022-48152 | cve | SQL Injection vulnerability in RemoteClinic 2.0 allows attackers to execute arbitrary commands and gain sensitive information via the id parameter to /medicines/profile.php. |
9.8 | 2023-01-20 | CVE-2023-23607 | cve | erohtar/Dasherr is a dashboard for self-hosted services. In affected versions unrestricted file upload allows any unauthenticated user to execute arbitrary code on the server. T... |
9.8 | 2023-01-20 | CVE-2023-24028 | cve | In MISP 2.4.167, app/Controller/Component/ACLComponent.php has incorrect access control for the decaying import function. |
9.8 | 2023-01-20 | CVE-2022-48121 | cve | TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the rsabits parameter in the setting/delStaticDhcpRules function. |
9.8 | 2023-01-20 | CVE-2022-48122 | cve | TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the dayvalid parameter in the setting/delStaticDhcpRules function. |
9.8 | 2023-01-20 | CVE-2022-48123 | cve | TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the servername parameter in the setting/delStaticDhcpRules function. |
9.8 | 2023-01-20 | CVE-2022-48124 | cve | TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the FileName parameter in the setting/setOpenVpnCertGenerationCfg function. |
Page(s) : 1 ... 422 423 424 425 426 427 428 429 430 431 [432] 433 434 435 436 437 438 439 440 441 442 ... | Result(s) : 43310 |