| Page(s) : 1 ... 49 50 51 52 53 54 55 56 57 58 [59] 60 61 62 63 64 65 66 67 68 69 ... | Result(s) : 8821 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.9 | 2022-09-06 | CVE-2022-1697 | cve | Okta Active Directory Agent versions 3.8.0 through 3.11.0 installed the Okta AD Agent Update Service using an unquoted path. Note: To remediate this vulnerability, you must unin... |
| 3.3 | 2022-09-06 | CVE-2022-29053 | cve | A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0.0 through 7.0.5 and below 7.0.0 may allow an a... |
| 2.7 | 2022-09-06 | CVE-2022-2945 | cve | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Directory Traversal in versions up to, and including, 5.5.3 via the 'type' paramet... |
| 2.7 | 2022-09-06 | CVE-2022-35931 | cve | Nextcloud Password Policy is an app that enables a Nextcloud server admin to define certain rules for passwords. Prior to versions 22.2.10, 23.0.7, and 24.0.3 the random passwor... |
| 3.8 | 2022-09-01 | CVE-2022-2256 | cve | A Stored Cross-site scripting (XSS) vulnerability was found in keycloak as shipped in Red Hat Single Sign-On 7. This flaw allows a privileged attacker to execute malicious scrip... |
| 2.7 | 2022-08-29 | CVE-2022-2556 | cve | The Mailchimp for WooCommerce WordPress plugin before 2.7.2 has an AJAX action that allows high privilege users to perform a POST request on behalf of the server to the internal... |
| 3.3 | 2022-08-26 | CVE-2021-3574 | cve | A vulnerability was found in ImageMagick-7.0.11-5, where executing a crafted file with the convert command, ASAN detects memory leaks. |
| 3.3 | 2022-08-26 | CVE-2021-3644 | cve | A flaw was found in wildfly-core in all versions. If a vault expression is in the form of a single attribute that contains multiple expressions, a user who was granted access to... |
| 2.7 | 2022-08-26 | CVE-2022-36168 | cve | A directory traversal vulnerability was discovered in Wuzhicms 4.1.0. via /coreframe/app/attachment/admin/index.php: |
| 3.1 | 2022-08-25 | CVE-2022-36117 | cve | An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authentic... |
| 3.3 | 2022-08-24 | CVE-2021-4217 | cve | A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows an attacker to in... |
| 3.5 | 2022-08-22 | CVE-2022-34771 | cve | Tabit - arbitrary SMS send on Tabits behalf. The resend OTP API of tabit allows an adversary to send messages on tabits behalf to anyone registered on the system - the API recei... |
| 3.3 | 2022-08-22 | CVE-2022-31237 | cve | Dell PowerScale OneFS, versions 9.2.0 up to and including 9.2.1.12 and 9.3.0.5 contain an improper preservation of permissions vulnerability in SyncIQ. A low privileged local at... |
| 2.7 | 2022-08-22 | CVE-2022-2841 | cve | A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Unins... |
| 3.3 | 2022-08-18 | CVE-2021-23188 | cve | Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow an authenticated user to potentially enable information disclosure via loca... |
| 3.2 | 2022-08-17 | CVE-2020-14394 | cve | An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged g... |
| 3.5 | 2022-08-16 | CVE-2022-37438 | cve | In Splunk Enterprise versions in the following table, an authenticated user can craft a dashboard that could potentially leak information (for example, username, email, and real... |
| 3.3 | 2022-08-15 | CVE-2022-36007 | cve | Venice is a Clojure inspired sandboxed Lisp dialect with excellent Java interoperability. A partial path traversal issue exists within the functions `load-file` and `load-resour... |
| 3.3 | 2022-08-12 | CVE-2022-20257 | cve | In Bluetooth, there is a possible way to pair a display only device without PIN confirmation due to a logic error in the code. This could lead to local escalation of privilege w... |
| 2.3 | 2022-08-12 | CVE-2022-20261 | cve | In LocationManager, there is a possible way to get location information due to a missing permission check. This could lead to local information disclosure with System execution ... |
| Page(s) : 1 ... 49 50 51 52 53 54 55 56 57 58 [59] 60 61 62 63 64 65 66 67 68 69 ... | Result(s) : 8821 |
