| Page(s) : 1 ... 35 36 37 38 39 40 41 42 43 44 [45] 46 47 48 49 50 51 52 53 54 55 ... | Result(s) : 287478 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-26 | CVE-2025-28942 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Trust Payments Trust Payments Gateway for WooCommerce allows SQL ... |
| N/A | 2025-03-26 | CVE-2025-2819 | cve | There is a risk of unauthorized file uploads in GT-SoftControl and potential file overwrites due to insufficient validation in the file selection process. This could lead to dat... |
| N/A | 2025-03-26 | CVE-2025-2820 | cve | An authenticated attacker can compromise the availability of the device via the network |
| N/A | 2025-03-26 | CVE-2025-30524 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in origincode Product Catalog allows SQL Injection. This issue affec... |
| N/A | 2025-03-26 | CVE-2024-11847 | cve | The wp-svg-upload WordPress plugin through 1.0.0 does not sanitize SVG file contents, which enables users with at least the author role to SVG with malicious JavaScript to condu... |
| N/A | 2025-03-26 | CVE-2024-12683 | cve | The Smart Maintenance Mode WordPress plugin before 1.5.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store... |
| N/A | 2025-03-26 | CVE-2024-13146 | cve | The Booknetic WordPress plugin before 4.1.5 does not have CSRF check when creating Staff accounts, which could allow attackers to make logged in admin add arbitrary Staff member... |
| 6.4 | 2025-03-26 | CVE-2025-1784 | cve | The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the uagb block in all versions up to, and including, 2.19.0 due to... |
| N/A | 2025-03-26 | CVE-2023-52972 | cve | Huawei PCs have a vulnerability that allows low-privilege users to bypass SDDL permission checks . Successful exploitation this vulnerability could lead to termination of some s... |
| N/A | 2025-03-26 | CVE-2024-30155 | cve | HCL SX does not set the secure attribute on authorization tokens or session cookies. Attackers may potentially be able to obtain access to the cookie values via a Cross-Site-For... |
| 6.4 | 2025-03-26 | CVE-2024-13702 | cve | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'vCitaMeetingScheduler' and 'vCitaSch... |
| 8.1 | 2025-03-26 | CVE-2024-13801 | cve | The BWL Advanced FAQ Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on th... |
| 7.3 | 2025-03-26 | CVE-2025-1514 | cve | The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to unauthorized filter calling due to insufficient restrictions o... |
| 7.2 | 2025-03-26 | CVE-2025-2009 | cve | The Newsletters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the logging functionality in all versions up to, and including, 4.9.9.7 due to insufficient... |
| 5.4 | 2025-03-26 | CVE-2025-2167 | cve | The Event post plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'events_list' shortcodes in all versions up to, and including, 5... |
| 7.2 | 2025-03-26 | CVE-2025-2257 | cve | The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1... |
| 6.5 | 2025-03-26 | CVE-2025-1310 | cve | The Jobs for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.7.11 via the 'job_postings_get_file' parameter... |
| 6.4 | 2025-03-26 | CVE-2025-1437 | cve | The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and incl... |
| 6.4 | 2025-03-26 | CVE-2025-1439 | cve | The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and incl... |
| 5.3 | 2025-03-26 | CVE-2025-1440 | cve | The Advanced iFrame plugin for WordPress is vulnerable to unauthorized excessive creation of options on the aip_map_url_callback() function in all versions up to, and including,... |
| Page(s) : 1 ... 35 36 37 38 39 40 41 42 43 44 [45] 46 47 48 49 50 51 52 53 54 55 ... | Result(s) : 287478 |
