| Page(s) : 1 ... 522 523 524 525 526 527 528 529 530 531 [532] 533 534 535 536 537 538 539 540 541 542 ... | Result(s) : 325298 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-08 | CVE-2025-3285 | cve | A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a resu... |
| 7.5 | 2025-04-08 | CVE-2025-32414 | cve | In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API (Python bindings) because of an incorrect return value. This occurs in... |
| N/A | 2025-04-08 | CVE-2025-32413 | cve | Vulnerability-Lookup before 2.7.1 allows stored XSS via a user bio in website/web/views/user.py. |
| N/A | 2025-04-08 | CVE-2025-32406 | cve | An XXE issue in the Director NBR component in NAKIVO Backup & Replication 10.3.x through 11.0.1 before 11.0.2 allows remote attackers fetch and parse the XML response. |
| N/A | 2025-04-08 | CVE-2025-32279 | cve | Missing Authorization vulnerability in Shahjada Live Forms. This issue affects Live Forms: from n/a through 4.8.5. |
| N/A | 2025-04-08 | CVE-2025-32211 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Broadstreet Broadstreet allows Stored XSS. This issue affects Bro... |
| N/A | 2025-04-08 | CVE-2025-32164 | cve | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in maennchen1.de m1.DownloadList. This issue affects m1.DownloadList: from n/a through 0... |
| N/A | 2025-04-08 | CVE-2025-32117 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in OTWthemes Widgetize Pages Light allows Reflected XSS. This issue ... |
| N/A | 2025-04-08 | CVE-2025-32036 | cve | DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. The algorithm used to generate the captcha image shows the least co... |
| N/A | 2025-04-08 | CVE-2025-32035 | cve | DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to 9.13.2, when uploading files (e.g. when uploading assets),... |
| N/A | 2025-04-08 | CVE-2025-32028 | cve | HAX CMS PHP allows you to manage your microsite universe with PHP backend. Multiple file upload functions within the HAX CMS PHP application call a ’save’ function in ’HAXCMSFil... |
| N/A | 2025-04-08 | CVE-2025-32026 | cve | Element Web is a Matrix web client built using the Matrix React SDK. Element Web, starting from version 1.11.16 up to version 1.11.96, can be configured to load Element Call fro... |
| N/A | 2025-04-08 | CVE-2025-32025 | cve | bep/imagemeta is a Go library for reading EXIF, IPTC and XMP image meta data from JPEG, TIFF, PNG, and WebP files. The buffer created for parsing metadata for PNG and WebP image... |
| N/A | 2025-04-08 | CVE-2025-32024 | cve | bep/imagemeta is a Go library for reading EXIF, IPTC and XMP image meta data from JPEG, TIFF, PNG, and WebP files. The EXIF data format allows for defining excessively large dat... |
| N/A | 2025-04-08 | CVE-2025-32020 | cve | The crud-query-parser library parses query parameters from HTTP requests and converts them to database queries. Improper neutralization of the order/sort parameter in the TypeOR... |
| N/A | 2025-04-08 | CVE-2025-32018 | cve | Cursor is a code editor built for programming with AI. In versions 0.45.0 through 0.48.6, the Cursor app introduced a regression affecting the set of file paths the Cursor Agent... |
| N/A | 2025-04-08 | CVE-2025-32017 | cve | Umbraco is a free and open source .NET content management system. Authenticated users to the Umbraco backoffice are able to craft management API request that exploit a path trav... |
| N/A | 2025-04-08 | CVE-2025-31498 | cve | c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in read_answers() when process_answer() may re-enqueue a query either due to a ... |
| 4.3 | 2025-04-08 | CVE-2025-31333 | cve | SAP S4CORE OData meta-data property is vulnerable to data tampering, due to which entity set could be externally modified by an attacker causing low impact on integrity of the a... |
| 6.6 | 2025-04-08 | CVE-2025-31332 | cve | Due to insecure file permissions in SAP BusinessObjects Business Intelligence Platform, an attacker who has local access to the system could modify files potentially disrupting ... |
| Page(s) : 1 ... 522 523 524 525 526 527 528 529 530 531 [532] 533 534 535 536 537 538 539 540 541 542 ... | Result(s) : 325298 |
