| Page(s) : 1 ... 47 48 49 50 51 52 53 54 55 56 [57] 58 59 60 61 62 63 64 65 66 67 ... | Result(s) : 114978 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.3 | 2025-05-05 | CVE-2024-11615 | cve | The Envolve Plugin plugin for WordPress is vulnerable to arbitrary file deletion in all versions up to, and including, 1.0 via the 'zetra_deleteLanguageFile' and '... |
| 6.1 | 2025-05-03 | CVE-2025-4199 | cve | The Abundatrade Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.8.02. This is due to missing or incorrect nonce v... |
| 6.1 | 2025-05-03 | CVE-2025-4198 | cve | The Alink Tap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation ... |
| 6.1 | 2025-05-03 | CVE-2025-4188 | cve | The Advanced Reorder Image Text Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or inco... |
| 6.4 | 2025-05-03 | CVE-2025-4172 | cve | The VerticalResponse Newsletter Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'verticalresponse' shortcode in all vers... |
| 6.4 | 2025-05-03 | CVE-2025-4170 | cve | The Xavin's Review Ratings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'xrr' shortcode in all versions up to, and incl... |
| 6.4 | 2025-05-03 | CVE-2025-4168 | cve | The Subpage List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'subpages' shortcode in all versions up to, and including, 1.3... |
| 6.4 | 2025-05-03 | CVE-2025-3815 | cve | The SurveyJS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.12.32 due to insufficient input san... |
| 6.4 | 2025-05-03 | CVE-2025-3779 | cve | The Personizely plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘widgetId’ parameter in all versions up to, and including, 0.10 due to insufficient inp... |
| 6.5 | 2025-05-03 | CVE-2025-1838 | cve | IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an authoring use... |
| 4.3 | 2025-05-03 | CVE-2025-1495 | cve | IBM Business Automation Workflow 24.0.0 and 24.0.1 through 24.0.1 IF001 Center may leak sensitive information due to missing authorization validation. |
| 6.1 | 2025-05-03 | CVE-2024-41753 | cve | IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF004 and 24.0.1 through 24.0.1 IF001 is vulnerable to cross-site scripting. This vulnerability allows an unauthentic... |
| 5.4 | 2025-05-02 | CVE-2025-47201 | cve | In Intrexx Portal Server before 12.0.4, multiple Velocity-Scripts are susceptible to the execution of unrequested JavaScript code in HTML, aka XSS. |
| 6.3 | 2025-05-02 | CVE-2025-4186 | cve | A vulnerability, which was classified as critical, was found in Wangshen SecGate 3600 2024. Affected is an unknown function of the file /?g=route_ispinfo_export_save. The manipu... |
| 6.3 | 2025-05-02 | CVE-2025-4185 | cve | A vulnerability, which was classified as critical, has been found in Wangshen SecGate 3600 2024. This issue affects some unknown processing of the file ?g=obj_area_export_save. ... |
| 5.3 | 2025-05-02 | CVE-2025-4177 | cve | The Flynax Bridge plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the deleteUser() function in all versions up to, and inclu... |
| 6.4 | 2025-05-02 | CVE-2025-4131 | cve | The GmapsMania plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's gmap shortcode in all versions up to, and including, 1.1 due to insufficie... |
| 5.4 | 2025-05-02 | CVE-2025-3858 | cve | The Formality plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘align’ parameter in all versions up to, and including, 1.5.8 due to insufficient input s... |
| 5.4 | 2025-05-02 | CVE-2025-3748 | cve | The Taxonomy Chain Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pn_chain_menu shortcode in all versions up to, and including, 1.0... |
| 6.5 | 2025-05-02 | CVE-2025-3707 | cve | The eHDR CTMS from Sunnet has a SQL Injection vulnerability, allowing remote attackers with regular privileges to inject arbitrary SQL command to read database contents. |
| Page(s) : 1 ... 47 48 49 50 51 52 53 54 55 56 [57] 58 59 60 61 62 63 64 65 66 67 ... | Result(s) : 114978 |
