| Page(s) : 1 ... 50 51 52 53 54 55 56 57 58 59 [60] 61 62 63 64 65 66 67 68 69 70 ... | Result(s) : 43234 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-03-02 | CVE-2025-1818 | cve | A vulnerability, which was classified as critical, has been found in zj1983 zz up to 2024-8. This issue affects some unknown processing of the file src/main/java/com/futvan/z/sy... |
| 9.8 | 2025-03-01 | CVE-2025-1791 | cve | A vulnerability has been found in Zorlan SkyCaiji 2.9 and classified as critical. This vulnerability affects the function fileAction of the file vendor/skycaiji/app/admin/contro... |
| 9.8 | 2025-03-01 | CVE-2024-12824 | cve | The Nokri – Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.6.2. This is due to ... |
| 9.8 | 2025-03-01 | CVE-2025-1564 | cve | The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity thro... |
| 9.8 | 2025-03-01 | CVE-2025-1638 | cve | The Alloggio Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.2. This is due to the plugin not properly validatin... |
| 9.8 | 2025-03-01 | CVE-2025-1671 | cve | The Academist Membership plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.6. This is due to the academist_membership_check_fa... |
| 9.1 | 2025-02-28 | CVE-2025-0159 | cve | IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0 through 8.6.0.5, 8.6.1.0, 8.6.2.0 ... |
| 9.8 | 2025-02-28 | CVE-2024-8420 | cve | The DHVC Form plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.7. This is due to the plugin allowing a user to supply the �... |
| 9.8 | 2025-02-28 | CVE-2024-8425 | cve | The WooCommerce Ultimate Gift Card plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'mwb_wgm_preview_mail' ... |
| 9.8 | 2025-02-28 | CVE-2024-9193 | cve | The WHMpress - WHMCS WordPress Integration Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 6.3-revision-0 via the whmpres... |
| 9.8 | 2025-02-28 | CVE-2025-1570 | cve | The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to privilege escalation via account takeover in all version... |
| 9.8 | 2025-02-27 | CVE-2025-0767 | cve | WP Activity Log 5.3.2 was found to be vulnerable. Unvalidated user input is used directly in an unserialize function in myapp/classes/Writers/class-csv-writer.php. |
| 9.8 | 2025-02-27 | CVE-2024-13148 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yukseloglu Filter B2B Login Platform allows SQL Injection.This is... |
| 9.8 | 2025-02-27 | CVE-2024-10918 | cve | Stack-based Buffer Overflow vulnerability in libmodbus v3.1.10 allows to overflow the buffer allocated for the Modbus response if the function tries to reply to a Modbus request... |
| 9.8 | 2025-02-27 | CVE-2025-27154 | cve | Spotipy is a lightweight Python library for the Spotify Web API. The `CacheHandler` class creates a cache file to store the auth token. Prior to version 2.25.1, the file created... |
| 9.1 | 2025-02-27 | CVE-2024-13905 | cve | The OneStore Sites plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 0.1.1 via the class-export.php file. This makes it pos... |
| 9.8 | 2025-02-25 | CVE-2025-27135 | cve | RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. Versions 0.15.1 and prior are vulnerable to SQL injection. The ExeSQL component extracts the SQL statement... |
| 9.8 | 2025-02-25 | CVE-2025-26971 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ays-pro Poll Maker allows Blind SQL Injection. This issue affects... |
| 9.8 | 2025-02-25 | CVE-2025-1128 | cve | The Everest Forms – Contact Forms, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to arbitrary file upload, read, and deletion ... |
| 9.1 | 2025-02-25 | CVE-2025-1675 | cve | The function dns_copy_qname in dns_pack.c performs performs a memcpy operation with an untrusted field and does not check if the source buffer is large enough to contain the cop... |
| Page(s) : 1 ... 50 51 52 53 54 55 56 57 58 59 [60] 61 62 63 64 65 66 67 68 69 70 ... | Result(s) : 43234 |
