| Page(s) : 1 ... 437 438 439 440 441 442 443 444 445 446 [447] 448 449 450 451 452 453 454 455 456 457 ... | Result(s) : 325200 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-18 | CVE-2025-28230 | cve | Incorrect access control in JMBroadcast JMB0150 Firmware v1.0 allows attackers to access hardcoded administrator credentials. |
| N/A | 2025-04-18 | CVE-2025-28229 | cve | Incorrect access control in Orban OPTIMOD 5950 Firmware v1.0.0.2 and System v2.2.15 allows attackers to bypass authentication and gain Administrator privileges. |
| N/A | 2025-04-18 | CVE-2025-28228 | cve | A credential exposure vulnerability in Electrolink 500W, 1kW, 2kW Medium DAB Transmitter Web v01.09, v01.08, v01.07, and Display v1.4, v1.2 allows unauthorized attackers to acce... |
| N/A | 2025-04-18 | CVE-2025-28197 | cve | Crawl4AI |
| N/A | 2025-04-18 | CVE-2025-28059 | cve | An access control vulnerability in Nagios Network Analyzer 2024R1.0.3 allows deleted users to retain access to system resources due to improper session invalidation and stale to... |
| N/A | 2025-04-18 | CVE-2025-27599 | cve | Element X Android is a Matrix Android Client provided by element.io. Prior to version 25.04.2, a crafted hyperlink on a webpage, or a locally installed malicious app, can force ... |
| 4.4 | 2025-04-18 | CVE-2025-2613 | cve | The Login Manager – Design Login Page, View Login Activity, Limit Login Attempts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Custom logo and background... |
| N/A | 2025-04-18 | CVE-2025-25985 | cve | An issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302 allows a physically proximate attacker to execute arbitrary code via the /mnt/mtd/m... |
| N/A | 2025-04-18 | CVE-2025-25984 | cve | An issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302 allows a physically proximate attacker to execute arbitrary code via UART component. |
| N/A | 2025-04-18 | CVE-2025-25983 | cve | An issue in Macro-video Technologies Co.,Ltd V380 Pro android application 2.1.44 and V380 Pro android application 2.1.64 allows an attacker to obtain sensitive information via t... |
| N/A | 2025-04-18 | CVE-2025-25427 | cve | A stored cross-site scripting (XSS) vulnerability in the upnp.htm page of the web Interface in TP-Link WR841N v14/v14.6/v14.8 |
| N/A | 2025-04-18 | CVE-2025-2492 | cve | An improper authentication control vulnerability exists in AiCloud. This vulnerability can be triggered by a crafted request, potentially leading to unauthorized execution of fu... |
| N/A | 2025-04-18 | CVE-2025-24914 | cve | When installing Nessus to a non-default location on a Windows host, Nessus versions prior to 10.8.4 did not enforce secure permissions for sub-directories. This could allow for ... |
| N/A | 2025-04-18 | CVE-2025-2162 | cve | The MapPress Maps for WordPress plugin before 2.94.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored C... |
| N/A | 2025-04-18 | CVE-2025-1863 | cve | Insecure default settings have been found in recorder products provided by Yokogawa Electric Corporation. The default setting of the authentication function is disabled on the a... |
| N/A | 2025-04-18 | CVE-2025-1697 | cve | A potential security vulnerability has been identified in the HP Touchpoint Analytics Service for certain HP PC products with versions prior to 4.2.2439. This vulnerability coul... |
| N/A | 2025-04-18 | CVE-2025-0467 | cve | Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory. |
| N/A | 2025-04-18 | CVE-2024-57493 | cve | An issue in redoxOS relibc before commit 98aa4ea5 allows a local attacker to cause a denial of service via the setsockopt function. |
| N/A | 2025-04-18 | CVE-2024-53591 | cve | An issue in the login page of Seclore v3.27.5.0 allows attackers to bypass authentication via a brute force attack. |
| 6.3 | 2025-04-18 | CVE-2024-49808 | cve | IBM Sterling Connect:Direct Web Services 6.1.0, 6.2.0, and 6.3.0 could allow an authenticated user to spoof the identity of another user due to improper authorization which coul... |
| Page(s) : 1 ... 437 438 439 440 441 442 443 444 445 446 [447] 448 449 450 451 452 453 454 455 456 457 ... | Result(s) : 325200 |
