| Page(s) : 1 ... 36 37 38 39 40 41 42 43 44 45 [46] 47 48 49 50 51 52 53 54 55 56 ... | Result(s) : 287478 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-03-26 | CVE-2025-1703 | cve | The Ultimate Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, and including, 3.2.7 due to insufficient... |
| N/A | 2025-03-26 | CVE-2025-1542 | cve | Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional adminis... |
| N/A | 2025-03-26 | CVE-2025-27551 | cve | DBIx::Class::EncodedColumn use the rand() function, which is not cryptographically secure to salt password hashes. This vulnerability is associated with program files lib/DBIx/... |
| N/A | 2025-03-26 | CVE-2025-27552 | cve | DBIx::Class::EncodedColumn use the rand() function, which is not cryptographically secure to salt password hashes. This vulnerability is associated with program files Crypt/Eks... |
| N/A | 2025-03-26 | CVE-2025-2596 | cve | Session logout could be overwritten in Checkmk GmbH's Checkmk versions |
| 9.8 | 2025-03-26 | CVE-2024-47516 | cve | A vulnerability was found in Pagure. An argument injection in Git during retrieval of the repository history leads to remote code execution on the Pagure instance. |
| 4.3 | 2025-03-26 | CVE-2025-2276 | cve | The Ultimate Dashboard – Custom WordPress Dashboard plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handle_modul... |
| 6.4 | 2025-03-26 | CVE-2025-2302 | cve | The Advanced Woo Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's aws_search_terms shortcode in all versions up to, and including, ... |
| 6.1 | 2025-03-26 | CVE-2025-1490 | cve | The Smart Maintenance Mode plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘setstatus’ parameter in all versions up to, and including, 1.5.2 due to ... |
| 6.1 | 2025-03-26 | CVE-2025-2165 | cve | The SH Email Alert plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'mid' parameter in all versions up to, and including, 1.0 due to insuff... |
| 6.4 | 2025-03-26 | CVE-2025-2573 | cve | The Amazing service box Addons For WPBakery Page Builder (formerly Visual Composer) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all... |
| 6.4 | 2025-03-26 | CVE-2025-2576 | cve | The Ayyash Studio — The kick-start kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.3 due to ... |
| N/A | 2025-03-26 | CVE-2025-30742 | cve | httpd.c in atophttpd 2.8.0 has an off-by-one error and resultant out-of-bounds read because a certain 1024-character req string would not have a final '\0' character. |
| N/A | 2025-03-25 | CVE-2025-30219 | cve | RabbitMQ is a messaging and streaming broker. Versions prior to 4.0.3 are vulnerable to a sophisticated attack that could modify virtual host name on disk and then make it unrec... |
| N/A | 2025-03-25 | CVE-2025-30222 | cve | Shescape is a simple shell escape library for JavaScript. Versions 1.7.2 through 2.1.1 are vulnerable to potential environment variable exposure on Windows with CMD. This impact... |
| N/A | 2025-03-25 | CVE-2024-48818 | cve | An issue in IIT Bombay, Mumbai, India Bodhitree of cs101 version allows a remote attacker to execute arbitrary code. |
| N/A | 2025-03-25 | CVE-2025-30118 | cve | An issue was discovered on the Audi Universal Traffic Recorder 2.88. It has Susceptibility to denial of service. It uses the same default credentials for all devices and does no... |
| N/A | 2025-03-25 | CVE-2025-30216 | cve | CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft runni... |
| N/A | 2025-03-25 | CVE-2024-55028 | cve | A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file. |
| N/A | 2025-03-25 | CVE-2024-55029 | cve | NASA Fprime v3.4.3 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities. |
| Page(s) : 1 ... 36 37 38 39 40 41 42 43 44 45 [46] 47 48 49 50 51 52 53 54 55 56 ... | Result(s) : 287478 |
