| Page(s) : 1 ... 479 480 481 482 483 484 485 486 487 488 [489] 490 491 492 493 494 495 496 497 498 499 ... | Result(s) : 299485 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-04-13 | CVE-2025-3533 | cve | A vulnerability, which was classified as problematic, has been found in YouDianCMS 9.5.21. This issue affects some unknown processing of the file /App/Tpl/Admin/Default/Channel/... |
| 4.3 | 2025-04-13 | CVE-2025-3532 | cve | A vulnerability classified as problematic was found in YouDianCMS 9.5.21. This vulnerability affects unknown code of the file /App/Tpl/Member/Default/Order/index.html.Attackers.... |
| 4.3 | 2025-04-13 | CVE-2025-3531 | cve | A vulnerability classified as problematic has been found in YouDianCMS 9.5.21. This affects an unknown part of the file /App/Tpl/Admin/Default/Log/index.html. The manipulation o... |
| N/A | 2025-04-13 | CVE-2025-3445 | cve | A Path Traversal "Zip Slip" vulnerability has been identified in mholt/archiver in Go. This vulnerability allows using a crafted ZIP file containing path traversal symlinks to c... |
| 5.4 | 2025-04-13 | CVE-2025-3423 | cve | IBM Aspera Faspex 5.0.0 through 5.0.11 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI th... |
| N/A | 2025-04-13 | CVE-2025-2814 | cve | Crypt::CBC versions between 1.21 and 3.05 for Perl may use the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functio... |
| N/A | 2025-04-13 | CVE-2024-56406 | cve | A heap buffer overflow vulnerability was discovered in Perl. Release branches 5.34, 5.36, 5.38 and 5.40 are affected, including development versions from 5.33.1 through 5.41.1... |
| 8.8 | 2025-04-12 | CVE-2025-3418 | cve | The WPC Admin Columns plugin for WordPress is vulnerable to privilege escalation in versions 2.0.6 to 2.1.0. This is due to the plugin not properly restricting user meta values ... |
| 4.3 | 2025-04-12 | CVE-2025-3292 | cve | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all version... |
| 5.3 | 2025-04-12 | CVE-2025-3282 | cve | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all version... |
| 5.4 | 2025-04-12 | CVE-2025-3276 | cve | The SKT Blocks – Gutenberg based Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Post Carousel block in all versions up to, and including,... |
| 6.8 | 2025-04-12 | CVE-2025-32726 | cve | Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally. |
| 7.5 | 2025-04-12 | CVE-2025-29834 | cve | Out-of-bounds read in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network. |
| 7.3 | 2025-04-12 | CVE-2025-29803 | cve | Uncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio allows an authorized attacker to elevate privileges locally. |
| 5.3 | 2025-04-12 | CVE-2025-2881 | cve | The Developer Toolbar plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.3 through the publicly accessible phpinfo.ph... |
| 4.3 | 2025-04-12 | CVE-2025-2871 | cve | The WordPress Mega Menu – QuadMenu plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.2.0. This is due to missing or incorr... |
| 5.3 | 2025-04-12 | CVE-2025-2841 | cve | The Cart66 Cloud plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.7 through the publicly accessible phpinfo.php scr... |
| 6.1 | 2025-04-12 | CVE-2025-2269 | cve | The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘image_id’ parameter in all versions up t... |
| 6.4 | 2025-04-12 | CVE-2025-1456 | cve | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `widgetGrid`, `widgetCountDown`, and `widgetInstagramFeed` met... |
| 6.4 | 2025-04-12 | CVE-2025-1455 | cve | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Woo Grid widget in all versions up to, and including, 1.7.1012... |
| Page(s) : 1 ... 479 480 481 482 483 484 485 486 487 488 [489] 490 491 492 493 494 495 496 497 498 499 ... | Result(s) : 299485 |
