| Page(s) : 1 ... 602 603 604 605 606 607 608 609 610 611 [612] 613 614 615 616 617 618 619 620 621 622 ... | Result(s) : 325428 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-01 | CVE-2025-21897 | cve | In the Linux kernel, the following vulnerability has been resolved: sched_ext: Fix pick_task_scx() picking non-queued tasks when it's called without balance() a6250aa251e... |
| N/A | 2025-04-01 | CVE-2025-21896 | cve | In the Linux kernel, the following vulnerability has been resolved: fuse: revert back to __readahead_folio() for readahead In commit 3eab9d7bc2f4 ("fuse: convert readahead to ... |
| N/A | 2025-04-01 | CVE-2025-21895 | cve | In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmu_ctx_list Syskaller triggers a warning due ... |
| N/A | 2025-04-01 | CVE-2025-21894 | cve | In the Linux kernel, the following vulnerability has been resolved: net: enetc: VFs do not support HWTSTAMP_TX_ONESTEP_SYNC Actually ENETC VFs do not support HWTSTAMP_TX_ONEST... |
| 8.3 | 2025-04-01 | CVE-2025-21384 | cve | An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Health Bot to elevate privileges over a network. |
| N/A | 2025-04-01 | CVE-2025-2048 | cve | The Lana Downloads Manager WordPress plugin before 1.10.0 does not validate user input used in a path, which could allow users with an admin role to perform path traversal attac... |
| 8.8 | 2025-04-01 | CVE-2025-2008 | cve | The Import Export Suite for CSV and XML Datafeed plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the import_single_post_as_cs... |
| 8.1 | 2025-04-01 | CVE-2025-2007 | cve | The Import Export Suite for CSV and XML Datafeed plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the deleteImage() func... |
| N/A | 2025-04-01 | CVE-2025-1986 | cve | The Gutentor WordPress plugin before 3.4.7 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks |
| 5.4 | 2025-04-01 | CVE-2025-1665 | cve | The Avada (Fusion) Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several of the plugin's shortcodes in all versions up to, and including, 3.... |
| 7.8 | 2025-04-01 | CVE-2025-1660 | cve | A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execu... |
| 7.8 | 2025-04-01 | CVE-2025-1659 | cve | A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cau... |
| 7.8 | 2025-04-01 | CVE-2025-1658 | cve | A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cau... |
| N/A | 2025-04-01 | CVE-2025-1534 | cve | CVE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Payara Platform Payara Server allows : Remote Code Inclus... |
| 6.4 | 2025-04-01 | CVE-2025-1512 | cve | The PowerPack Elementor Addons (Free Widgets, Extensions and Templates) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom Cursor Extension in all ... |
| 5.5 | 2025-04-01 | CVE-2025-1267 | cve | The Groundhogg plugin for Wordpress is vulnerable to Stored Cross-Site Scripting via the ‘label' parameter in versions up to, and including, 3.7.4.1 due to insufficient inp... |
| N/A | 2025-04-01 | CVE-2025-0418 | cve | Valmet DNA user passwords in plain text. This practice poses a security risk as attackers who gain access to local project data can read the passwords. |
| N/A | 2025-04-01 | CVE-2025-0417 | cve | Lack of protection against brute force attacks in Valmet DNA visualization in DNA Operate. The possibility to make an arbitrary number of login attempts without any rate limit g... |
| N/A | 2025-04-01 | CVE-2025-0416 | cve | Local privilege escalation through insecure DCOM configuration in Valmet DNA versions prior to C2023. The DCOM object Valmet DNA Engineering has permissions that allow it to run... |
| N/A | 2025-04-01 | CVE-2024-56325 | cve | Authentication Bypass Issue If the path does not contain / and contain., authentication is not required. Expected Normal Request and Response Example curl -X POST -H "Content... |
| Page(s) : 1 ... 602 603 604 605 606 607 608 609 610 611 [612] 613 614 615 616 617 618 619 620 621 622 ... | Result(s) : 325428 |
