Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 [6] 7 8 9 10 11 12 13 14 15 16 ... Result(s) : 172947

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
N/A 2021-10-25 CVE-2021-24884 cve The Formidable Form Builder WordPress plugin before 4.09.05 allows to inject certain HTML Tags like ,,, and.This could allow an unauthenticated, remote attacker to exploit a HTM...
N/A 2021-10-25 CVE-2021-24885 cve The YOP Poll WordPress plugin before 6.1.2 does not escape the perpage parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting
N/A 2021-10-25 CVE-2020-20908 cve Akaunting v1.3.17 was discovered to contain a stored cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted paylo...
N/A 2021-10-25 CVE-2021-41035 cve In Eclipse Openj9 before version 0.29.0, the JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods.
6.8 2021-10-25 CVE-2021-21319 cve Galette is a membership management web application geared towards non profit organizations. In versions prior to 0.9.5, malicious javascript code can be stored to be displayed l...
7.5 2021-10-25 CVE-2021-37624 cve FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hard...
N/A 2021-10-25 CVE-2021-34854 cve This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160). An attacker must first obtain the ability to exec...
N/A 2021-10-25 CVE-2021-34855 cve This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Desktop 16.1.3 (49160). An attacker must first obtain the abil...
N/A 2021-10-25 CVE-2021-34856 cve This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160). An attacker must first obtain the ability to exec...
N/A 2021-10-25 CVE-2021-34857 cve This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160). An attacker must first obtain the ability to exec...
N/A 2021-10-25 CVE-2021-34859 cve This vulnerability allows remote attackers to execute arbitrary code on affected installations of TeamViewer 15.16.8.0. User interaction is required to exploit this vulnerabilit...
N/A 2021-10-25 CVE-2021-34860 cve This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not requ...
N/A 2021-10-25 CVE-2021-34861 cve This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to ...
N/A 2021-10-25 CVE-2021-34862 cve This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to ...
N/A 2021-10-25 CVE-2021-34863 cve This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to ...
N/A 2021-10-25 CVE-2021-34864 cve This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160). An attacker must first obtain the ability to exec...
4.3 2021-10-25 CVE-2021-41176 cve Pterodactyl is an open-source game server management panel built with PHP 7, React, and Go. In affected versions of Pterodactyl a malicious user can trigger a user logout if a s...
N/A 2021-10-25 CVE-2021-40526 cve Incorrect calculation of buffer size vulnerability in Peleton TTR01 up to and including PTV55G allows a remote attacker to trigger a Denial of Service attack through the GymKit ...
N/A 2021-10-25 CVE-2021-40527 cve Exposure of senstive information to an unauthorised actor in the "com.onepeloton.erlich" mobile application up to and including version 1.7.22 allows a remote attacker to access...
5.4 2021-10-25 CVE-2021-25977 cve In PiranhaCMS, versions 7.0.0 to 9.1.1 are vulnerable to stored XSS due to the page title improperly sanitized. By creating a page with a specially crafted page title, a low pri...
Page(s) : 1 2 3 4 5 [6] 7 8 9 10 11 12 13 14 15 16 ... Result(s) : 172947