| Page(s) : 1 ... 565 566 567 568 569 570 571 572 573 574 [575] 576 577 578 579 580 581 582 583 584 585 ... | Result(s) : 299770 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.5 | 2025-04-03 | CVE-2025-21996 | cve | In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse() On the off chance that command stream pas... |
| 5.5 | 2025-04-03 | CVE-2025-21995 | cve | In the Linux kernel, the following vulnerability has been resolved: drm/sched: Fix fence reference count leak The last_scheduled fence leaks when an entity is being killed and... |
| N/A | 2025-04-03 | CVE-2025-2055 | cve | The MapPress Maps for WordPress plugin before 2.94.9 does not sanitise and escape some parameters when outputing them in the page, which could allow users with a role as low as ... |
| 5.4 | 2025-04-03 | CVE-2025-1663 | cve | The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 1.5.142 due to i... |
| N/A | 2025-04-03 | CVE-2025-0279 | cve | HCL Traveler generates some error messages that provide detailed information about errors and failures, such as internal paths, file names, sensitive tokens, credentials, error ... |
| N/A | 2025-04-03 | CVE-2025-0278 | cve | HCL Traveler is affected by an internal path disclosure in a Windows application when the application inadvertently reveals internal file paths, in error messages, debug logs, o... |
| 7.6 | 2025-04-03 | CVE-2025-0272 | cve | HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive i... |
| 6.4 | 2025-04-03 | CVE-2024-9416 | cve | The Modula Image Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bundled FancyBox JavaScript library (versions |
| N/A | 2025-04-03 | CVE-2024-56528 | cve | This vulnerability affects Snowplow Collector 3.x before 3.3.0 (unless it’s set up behind a reverse proxy that establishes payload limits). It involves sending very large payloa... |
| N/A | 2025-04-03 | CVE-2024-53868 | cve | Apache Traffic Server allows request smuggling if chunked messages are malformed. This issue affects Apache Traffic Server: from 9.2.0 through 9.2.9, from 10.0.0 through 1... |
| N/A | 2025-04-03 | CVE-2024-4877 | cve | OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it... |
| N/A | 2025-04-03 | CVE-2024-47217 | cve | An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47214, but involves an authenticated endpoint. It can render Iglu Server completely unresponsi... |
| N/A | 2025-04-03 | CVE-2024-47215 | cve | An issue was discovered in Snowbridge setups sending data to Google Tag Manager Server Side. It involves attaching an invalid GTM SS preview header to events, causing them to be... |
| N/A | 2025-04-03 | CVE-2024-47214 | cve | An issue was discovered in Iglu Server 0.13.0 and below. It is similar to CVE-2024-47212, but involves a different kind of malicious payload. As above, it can render Iglu Server... |
| N/A | 2025-04-03 | CVE-2024-47213 | cve | An issue was discovered affecting Enrich 5.1.0 and below. It involves sending a maliciously crafted Snowplow event to the pipeline. Upon receiving this event and trying to valid... |
| N/A | 2025-04-03 | CVE-2024-47212 | cve | An issue was discovered in Iglu Server 0.13.0 and below. It involves sending very large payloads to a particular API endpoint of Iglu Server and can render it completely unrespo... |
| N/A | 2025-04-03 | CVE-2024-45199 | cve | insightsoftware Hive JDBC through 2.6.13 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during... |
| N/A | 2025-04-03 | CVE-2024-45198 | cve | insightsoftware Spark JDBC 2.6.21 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the pr... |
| N/A | 2025-04-03 | CVE-2024-22611 | cve | OpenEMR 7.0.2 is vulnerable to SQL Injection via \openemr\library\classes\Pharmacy.class.php, \controllers\C_Pharmacy.class.php and \openemr\controller.php. |
| 6.4 | 2025-04-03 | CVE-2024-13673 | cve | The Big Boom Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bbd-search' shortcode in all versions up to, and includ... |
| Page(s) : 1 ... 565 566 567 568 569 570 571 572 573 574 [575] 576 577 578 579 580 581 582 583 584 585 ... | Result(s) : 299770 |
