| Page(s) : 1 ... 566 567 568 569 570 571 572 573 574 575 [576] 577 578 579 580 581 582 583 584 585 586 ... | Result(s) : 299770 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-03 | CVE-2023-47639 | cve | API Platform Core is a system to create hypermedia-driven REST and GraphQL APIs. From 3.2.0 until 3.2.4, exception messages, that are not HTTP exceptions, are visible in the JSO... |
| 6.5 | 2025-04-03 | CVE-2025-2784 | cve | A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace() function. Libsoup clients may read one ... |
| N/A | 2025-04-03 | CVE-2025-32049 | cve | A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause libsoup to allocate memory and lead to a denial of service (DoS). |
| 9.8 | 2025-04-03 | CVE-2025-3173 | cve | A vulnerability, which was classified as critical, was found in Project Worlds Online Lawyer Management System 1.0. Affected is an unknown function of the file /save_booking.php... |
| N/A | 2025-04-02 | CVE-2025-31728 | cve | Jenkins AsakusaSatellite Plugin 0.1.1 and earlier does not mask AsakusaSatellite API keys displayed on the job configuration form, increasing the potential for attackers to obse... |
| N/A | 2025-04-02 | CVE-2025-31727 | cve | Jenkins AsakusaSatellite Plugin 0.1.1 and earlier stores AsakusaSatellite API keys unencrypted in job config.xml files on the Jenkins controller where they can be viewed by user... |
| N/A | 2025-04-02 | CVE-2025-31726 | cve | Jenkins Stack Hammer Plugin 1.0.6 and earlier stores Stack Hammer API keys unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with E... |
| N/A | 2025-04-02 | CVE-2025-31725 | cve | Jenkins monitor-remote-job Plugin 1.0 stores passwords unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Extended Read permiss... |
| N/A | 2025-04-02 | CVE-2025-31724 | cve | Jenkins Cadence vManager Plugin 4.0.0-282.v5096a_c2db_275 and earlier stores Verisium Manager vAPI keys unencrypted in job config.xml files on the Jenkins controller where they ... |
| N/A | 2025-04-02 | CVE-2025-31723 | cve | A cross-site request forgery (CSRF) vulnerability in Jenkins Simple Queue Plugin 1.4.6 and earlier allows attackers to change and reset the build queue order. |
| N/A | 2025-04-02 | CVE-2025-31722 | cve | In Jenkins Templating Engine Plugin 2.5.3 and earlier, libraries defined in folders are not subject to sandbox protection, allowing attackers with Item/Configure permission to e... |
| N/A | 2025-04-02 | CVE-2025-31721 | cve | A missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers with Computer/Create permission but without Computer/Configure permission to co... |
| N/A | 2025-04-02 | CVE-2025-31720 | cve | A missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers with Computer/Create permission but without Computer/Extended Read permission t... |
| N/A | 2025-04-02 | CVE-2025-3154 | cve | Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid VerticesPerRow value in a PDF shading dictionary. |
| N/A | 2025-04-02 | CVE-2025-31484 | cve | conda-forge infrastructure holds common configurations and settings for key pieces of the conda-forge infrastructure. Between 2025-02-10 and 2025-04-01, conda-forge infrastructu... |
| N/A | 2025-04-02 | CVE-2025-31479 | cve | canonical/get-workflow-version-action is a GitHub composite action to get commit SHA that GitHub Actions reusable workflow was called with. Prior to 1.0.1, if the get-workflow-v... |
| 9.8 | 2025-04-02 | CVE-2025-31477 | cve | The Tauri shell plugin allows access to the system shell. Prior to 2.2.1, the Tauri shell plugin exposes functionality to execute code and open programs on the system. The open ... |
| N/A | 2025-04-02 | CVE-2025-3130 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Obfuscate allows Stored XSS.This issue affects Obfuscate: ... |
| N/A | 2025-04-02 | CVE-2025-3129 | cve | Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Access code allows Brute Force.This issue affects Access code: from 0.0.0 before 2.0.4. |
| N/A | 2025-04-02 | CVE-2025-31286 | cve | An HTML injection vulnerability previously discovered in Trend Vision One could have allowed a malicious user to execute arbitrary code. Please note: this issue has already b... |
| Page(s) : 1 ... 566 567 568 569 570 571 572 573 574 575 [576] 577 578 579 580 581 582 583 584 585 586 ... | Result(s) : 299770 |
