| Page(s) : 1 ... 561 562 563 564 565 566 567 568 569 570 [571] 572 573 574 575 576 577 578 579 580 581 ... | Result(s) : 325351 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-04 | CVE-2025-31405 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in zankover Fami WooCommerce Compare allows PHP L... |
| N/A | 2025-04-04 | CVE-2025-31403 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in shiptrack Booking Calendar and Notification allows Blind SQL Inje... |
| N/A | 2025-04-04 | CVE-2025-31389 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sequel.Io Sequel allows Reflected XSS.This issue affects Sequel: ... |
| N/A | 2025-04-04 | CVE-2025-31384 | cve | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Aviplugins Videos allows Reflected XSS.This issue affects Videos: from n/a through... |
| N/A | 2025-04-04 | CVE-2025-31381 | cve | Missing Authorization vulnerability in shiptrack Booking Calendar and Notification allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Boo... |
| N/A | 2025-04-04 | CVE-2025-31130 | cve | gitoxide is an implementation of git written in Rust. Before 0.42.0, gitoxide uses SHA-1 hash implementations without any collision detection, leaving it vulnerable to hash coll... |
| 8.8 | 2025-04-04 | CVE-2025-3105 | cve | The Vehica Core plugin for WordPress, used by the Vehica - Car Dealer & Listing WordPress Theme, is vulnerable to privilege escalation in all versions up to, and including, 1.0.... |
| N/A | 2025-04-04 | CVE-2025-3087 | cve | Stored XSS in M-Files Web versions from 25.1.14445.5 to 25.2.14524.4 allows an authenticated user to run scripts |
| N/A | 2025-04-04 | CVE-2025-3086 | cve | Improper isolation of users in M-Files Server version before 25.3.14549 allows anonymous user to affect other anonymous users views and possibly cause a denial of service |
| 7.6 | 2025-04-04 | CVE-2025-29815 | cve | Use after free in Microsoft Edge (Chromium-based) allows an authorized attacker to execute code over a network. |
| N/A | 2025-04-04 | CVE-2025-29796 | cve | User interface (ui) misrepresentation of critical information in Microsoft Edge for iOS allows an unauthorized attacker to perform spoofing over a network. |
| N/A | 2025-04-04 | CVE-2025-29477 | cve | An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the function consume_event. |
| N/A | 2025-04-04 | CVE-2025-29476 | cve | Buffer Overflow vulnerability in compress_chunk_fuzzer with oss-fuzz on commit 16450518afddcb3139de627157208e49bfef6987 in c-blosc2 v.2.17.0 and before. |
| 6.4 | 2025-04-04 | CVE-2025-2836 | cve | The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘payment_... |
| N/A | 2025-04-04 | CVE-2025-28146 | cve | Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a command injection vulnerability via fota_url in /boafrm/formLtefotaUpgradeQuectel |
| N/A | 2025-04-04 | CVE-2025-2798 | cve | The Woffice CRM theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 5.4.21. This is due to a misconfiguration of excluded roles duri... |
| N/A | 2025-04-04 | CVE-2025-2797 | cve | The Woffice Core plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.4.21. This is due to missing or incorrect nonce validat... |
| 8.8 | 2025-04-04 | CVE-2025-2780 | cve | The Woffice Core plugin for WordPress, used by the Woffice Theme, is vulnerable to arbitrary file uploads due to missing file type validation in the 'saveFeaturedImage'... |
| N/A | 2025-04-04 | CVE-2025-27520 | cve | BentoML is a Python library for building online serving systems optimized for AI apps and model inference. A Remote Code Execution (RCE) vulnerability caused by insecure deseria... |
| N/A | 2025-04-04 | CVE-2025-26401 | cve | Weak encoding for password vulnerability exists in HMI ViewJet C-more series. If this vulnerability is exploited, authentication information may be obtained by a local authentic... |
| Page(s) : 1 ... 561 562 563 564 565 566 567 568 569 570 [571] 572 573 574 575 576 577 578 579 580 581 ... | Result(s) : 325351 |
