| Page(s) : 1 ... 476 477 478 479 480 481 482 483 484 485 [486] 487 488 489 490 491 492 493 494 495 496 ... | Result(s) : 325248 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-15 | CVE-2025-3576 | cve | A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is pref... |
| N/A | 2025-04-15 | CVE-2025-3575 | cve | Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "idUsuario" parameter in "/h... |
| N/A | 2025-04-15 | CVE-2025-3574 | cve | Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "idUsuario" parameter in "/h... |
| N/A | 2025-04-15 | CVE-2025-3573 | cve | Versions of the package jquery-validation before 1.20.0 are vulnerable to Cross-site Scripting (XSS) in the showLabel() function, which may take input from a user-controlled pla... |
| N/A | 2025-04-15 | CVE-2025-3523 | cve | When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. ... |
| N/A | 2025-04-15 | CVE-2025-3522 | cve | Thunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which can be hosted externally. When an email is opened, Thunderbird accesses the specif... |
| 4.9 | 2025-04-15 | CVE-2025-3470 | cve | The TS Poll – Survey, Versus Poll, Image Poll, Video Poll plugin for WordPress is vulnerable to SQL Injection via the s parameter in all versions up to, and including, 2.4.6 due... |
| N/A | 2025-04-15 | CVE-2025-33028 | cve | In WinZip through 29.0, there is a Mark-of-the-Web Bypass Vulnerability because of an incomplete fix for CVE-2024-8811. This vulnerability allows attackers to bypass the Mark-of... |
| 7.8 | 2025-04-15 | CVE-2025-33027 | cve | In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on af... |
| 7.8 | 2025-04-15 | CVE-2025-33026 | cve | In PeaZip through 10.4.0, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected ins... |
| N/A | 2025-04-15 | CVE-2025-32997 | cve | In http-proxy-middleware before 2.0.9 and 3.x before 3.0.5, fixRequestBody proceeds even if bodyParser has failed. |
| N/A | 2025-04-15 | CVE-2025-32996 | cve | In http-proxy-middleware before 2.0.8 and 3.x before 3.0.4, writeBody can be called twice because "else if" is not used. |
| N/A | 2025-04-15 | CVE-2025-32993 | cve | Vision Helpdesk through 5.7.0 allows Time-Based Blind SQL injection via the Forgot Password (aka index.php?/home/forgot-password) vis_username parameter. Authentication is not n... |
| N/A | 2025-04-15 | CVE-2025-32987 | cve | Arctera eDiscovery Platform before 10.3.2, when Enterprise Vault Collection Module is used, places a cleartext password on a command line in EVSearcher. |
| N/A | 2025-04-15 | CVE-2025-32949 | cve | This vulnerability allows any authenticated user to cause the server to consume very large amounts of disk space when extracting a Zip Bomb. If user import is enabled (which i... |
| N/A | 2025-04-15 | CVE-2025-32948 | cve | The vulnerability allows any attacker to cause the PeerTube server to stop functioning, or in special cases send requests to arbitrary URLs (Blind SSRF). Attackers can send Acti... |
| N/A | 2025-04-15 | CVE-2025-32947 | cve | This vulnerability allows any attacker to cause the PeerTube server to stop responding to requests due to an infinite loop in the "inbox" endpoint when receiving crafted Activit... |
| N/A | 2025-04-15 | CVE-2025-32946 | cve | This vulnerability allows any attacker to add playlists to a different user’s channel using the ActivityPub protocol. The vulnerable code sets the owner of the new playlist to b... |
| N/A | 2025-04-15 | CVE-2025-32945 | cve | The vulnerability allows an existing user to add playlists to a different user’s channel using the PeerTube REST API. The vulnerable code sets the owner of the new playlist to b... |
| N/A | 2025-04-15 | CVE-2025-32944 | cve | The vulnerability allows any authenticated user to cause the PeerTube server to stop functioning in a persistent manner. If user import is enabled (which is the default setting... |
| Page(s) : 1 ... 476 477 478 479 480 481 482 483 484 485 [486] 487 488 489 490 491 492 493 494 495 496 ... | Result(s) : 325248 |
