| Page(s) : 1 ... 49 50 51 52 53 54 55 56 57 58 [59] 60 61 62 63 64 65 66 67 68 69 ... | Result(s) : 114978 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.1 | 2025-05-01 | CVE-2025-4143 | cve | The OAuth implementation in workers-oauth-provider that is part of MCP framework https://github.com/cloudflare/workers-mcp , did not correctly validate that redirect_uri was on... |
| 6.4 | 2025-05-01 | CVE-2025-4100 | cve | The Nautic Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'np_marinetraffic_map' shortcode in all versions up to, and in... |
| 5.4 | 2025-05-01 | CVE-2025-3890 | cve | The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wp_cart_button' shortcode in all versions u... |
| 5.3 | 2025-05-01 | CVE-2025-3889 | cve | The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.3 via the 'process_payme... |
| 6.5 | 2025-05-01 | CVE-2025-3874 | cve | The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.3 due to lack of randomizatio... |
| 6.4 | 2025-05-01 | CVE-2025-3521 | cve | The Team Members – Best WordPress Team Plugin with Team Slider, Team Showcase & Team Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Social Link ic... |
| 4.8 | 2025-05-01 | CVE-2025-3504 | cve | The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Si... |
| 4.8 | 2025-05-01 | CVE-2025-3503 | cve | The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Si... |
| 4.8 | 2025-05-01 | CVE-2025-3502 | cve | The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Si... |
| 6.5 | 2025-05-01 | CVE-2025-32890 | cve | An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. It uses a custom implementation of encryption without any additional integrity checking mecha... |
| 6.5 | 2025-05-01 | CVE-2025-32887 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. A command channel includes the next hop. which can be intercepted and used to break frequency h... |
| 5.5 | 2025-05-01 | CVE-2025-32886 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. All packets sent over RF are also sent over UART with USB Shell, allowing someone with local ac... |
| 6.5 | 2025-05-01 | CVE-2025-32885 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The app there makes it possible to inject any custom message (into existing v1 networks) with a... |
| 6.5 | 2025-05-01 | CVE-2025-32884 | cve | An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. By default, a GID is the user's phone number unless they specifically opt out. A phone n... |
| 6.5 | 2025-05-01 | CVE-2025-32882 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The app uses a custom implementation of encryption without any additional integrity checking me... |
| 6.5 | 2025-05-01 | CVE-2025-32881 | cve | An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. By default, the GID is the user's phone number unless they specifically opt out. A phone n... |
| 6.5 | 2025-05-01 | CVE-2025-27365 | cve | IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, and MQ Operator SC2 3.2.0 through 3.2.10 Client ... |
| 4.3 | 2025-05-01 | CVE-2025-2168 | cve | The Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider plugin for WordPress is vulne... |
| 6.4 | 2025-05-01 | CVE-2025-1529 | cve | The AM LottiePlayer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via uploaded lottie files in all versions up to, and including, 3.5.3 due to insufficient i... |
| 6 | 2025-05-01 | CVE-2025-1333 | cve | IBM MQ Container when used with the IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, and MQ Operato... |
| Page(s) : 1 ... 49 50 51 52 53 54 55 56 57 58 [59] 60 61 62 63 64 65 66 67 68 69 ... | Result(s) : 114978 |
