Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 495 496 497 498 499 500 501 502 503 504 [505] 506 507 508 509 510 511 512 513 514 515 ... Result(s) : 299537

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
N/A 2025-04-10 CVE-2024-13874 cve The Feedify WordPress plugin before 2.4.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which coul...
N/A 2025-04-10 CVE-2024-11129 cve An issue has been discovered in GitLab EE affecting all versions from 17.1 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. This allows attackers to perform targete...
6.4 2025-04-10 CVE-2024-10894 cve The Payment Forms for Paystack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes like 'datepicker', 'textarea...
6.5 2025-04-10 CVE-2023-43037 cve IBM Maximo Application Suite 8.11 and 9.0 could allow an authenticated user to perform unauthorized actions due to improper input validation.
4 2025-04-10 CVE-2023-43035 cve IBM Sterling Control Center 6.2.1, 6.3.1, and 6.4.0 allows web pages to be stored locally which can be read by another user on the system.
5.4 2025-04-10 CVE-2023-42007 cve IBM Sterling Control Center 6.2.1, 6.3.1, and 6.4.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus ...
3.8 2025-04-10 CVE-2025-32728 cve In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding.
N/A 2025-04-09 CVE-2025-3475 cve Allocation of Resources Without Limits or Throttling, Incorrect Authorization vulnerability in Drupal WEB-T allows Excessive Allocation, Content Spoofing.This issue affects WEB-...
N/A 2025-04-09 CVE-2025-3474 cve Missing Authentication for Critical Function vulnerability in Drupal Panels allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Panels: fr...
N/A 2025-04-09 CVE-2025-3442 cve This vulnerability exists in TP-Link Tapo H200 V1 IoT Smart Hub due to storage of Wi-Fi credentials in plain text within the device firmware. An attacker with physical access c...
N/A 2025-04-09 CVE-2025-32695 cve Incorrect Privilege Assignment vulnerability in Mestres do WP Checkout Mestres WP allows Privilege Escalation. This issue affects Checkout Mestres WP: from n/a through 8.7.5.
N/A 2025-04-09 CVE-2025-32694 cve URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Rustaurius Ultimate WP Mail allows Phishing. This issue affects Ultimate WP Mail: from n/a through...
N/A 2025-04-09 CVE-2025-32693 cve URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WPWebinarSystem WebinarPress allows Phishing. This issue affects WebinarPress: from n/a through 1....
N/A 2025-04-09 CVE-2025-32692 cve Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WP Shuffle WP Subscription Forms allows PHP Lo...
N/A 2025-04-09 CVE-2025-32691 cve Server-Side Request Forgery (SSRF) vulnerability in Angelo Mandato PowerPress Podcasting allows Server Side Request Forgery. This issue affects PowerPress Podcasting: from n/a t...
N/A 2025-04-09 CVE-2025-32690 cve Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Angelo Mandato PowerPress Podcasting allows DOM-Based XSS.This is...
N/A 2025-04-09 CVE-2025-32685 cve Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aristo Rinjuang WP Inquiries allows SQL Injection. This issue aff...
N/A 2025-04-09 CVE-2025-32684 cve Missing Authorization vulnerability in RomanCode MapSVG Lite allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MapSVG Lite: from n/a th...
N/A 2025-04-09 CVE-2025-32683 cve Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RomanCode MapSVG Lite allows DOM-Based XSS. This issue affects Ma...
N/A 2025-04-09 CVE-2025-32680 cve Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Grade Us, Inc. Review Stream allows Stored XSS. This issue affect...
Page(s) : 1 ... 495 496 497 498 499 500 501 502 503 504 [505] 506 507 508 509 510 511 512 513 514 515 ... Result(s) : 299537