| Page(s) : 1 ... 623 624 625 626 627 628 629 630 631 632 [633] 634 635 636 637 638 639 640 641 642 643 ... | Result(s) : 299828 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-28 | CVE-2025-2910 | cve | User enumeration in the password reset module of the MeetMe authentication service in versions prior to 2024-09 allows an attacker to determine whether an email address is regis... |
| N/A | 2025-03-28 | CVE-2025-2911 | cve | Unauthorised access to the call forwarding service system in MeetMe products in versions prior to 2024-09 allows an attacker to identify multiple users and perform brute force a... |
| 4.5 | 2025-03-28 | CVE-2025-0986 | cve | IBM PowerVM Hypervisor FW1050.00 through FW1050.30 and FW1060.00 through FW1060.20 could allow a local user, under certain Linux processor combability mode configurations, to ca... |
| N/A | 2025-03-28 | CVE-2025-1781 | cve | There is a XXE in W3CSS Validator versions before cssval-20250226 that allows an attacker to use specially-crafted XML objects to coerce server-side request forgery (SSRF). Thi... |
| N/A | 2025-03-28 | CVE-2025-28219 | cve | Netgear DC112A V1.0.0.64 has an OS command injection vulnerability in the usb_adv.cgi, which allows remote attackers to execute arbitrary commands via parameter "deviceName" pas... |
| N/A | 2025-03-28 | CVE-2025-28220 | cve | Tenda W6_S v1.0.0.4_510 has a Buffer Overflow vulnerability in the setcfm function, which allows remote attackers to cause web server crash via parameter funcpara1 passed to the... |
| N/A | 2025-03-28 | CVE-2025-28221 | cve | Tenda W6_S v1.0.0.4_510 has a Buffer Overflow vulnerability in the set_local_time function, which allows remote attackers to cause web server crash via parameter time passed to ... |
| N/A | 2025-03-28 | CVE-2025-2858 | cve | Privilege escalation vulnerability in the saTECH BCU firmware version 2.1.3. An attacker with access to the CLI of the device could make use of the nice command to bypass all re... |
| N/A | 2025-03-28 | CVE-2025-2859 | cve | An attacker with network access, could capture traffic and obtain user cookies, allowing the attacker to steal the active user session and make changes to the device via web, de... |
| N/A | 2025-03-28 | CVE-2025-2860 | cve | SaTECH BCU in its firmware version 2.1.3, allows an authenticated attacker to access information about the credentials that users have within the web (.xml file). In order to ex... |
| N/A | 2025-03-28 | CVE-2025-2861 | cve | SaTECH BCU in its firmware version 2.1.3 uses the HTTP protocol. The use of the HTTP protocol for web browsing has the problem that information is exchanged in unencrypted text.... |
| N/A | 2025-03-28 | CVE-2025-2862 | cve | SaTECH BCU, in its firmware version 2.1.3, performs weak password encryption. This allows an attacker with access to the device's system or website to obtain the credential... |
| N/A | 2025-03-28 | CVE-2025-2863 | cve | Cross-site request forgery (CSRF) vulnerability in the web application of saTECH BCU firmware version 2.1.3, which could allow an unauthenticated local attacker to exploit activ... |
| N/A | 2025-03-28 | CVE-2025-2864 | cve | SaTECH BCU in its firmware version 2.1.3 allows an attacker to inject malicious code into the legitimate website owning the affected device, once the cookie is set. This attack ... |
| N/A | 2025-03-28 | CVE-2025-2865 | cve | SaTECH BCU, in its firmware version 2.1.3, could allow XSS attacks and other malicious resources to be stored on the web server. An attacker with some knowledge of the web appli... |
| N/A | 2025-03-28 | CVE-2025-2877 | cve | A flaw was found in the Ansible Automation Platform's Event-Driven Ansible. In configurations where verbosity is set to "debug", inventory passwords are exposed in plain te... |
| N/A | 2025-03-28 | CVE-2025-2901 | cve | Rejected reason: This vulnerability is redundant to CVE-2025-23366 and CVE-2024-10234. |
| 5.4 | 2025-03-28 | CVE-2024-39311 | cve | Publify is a self hosted Web publishing platform on Rails. Prior to version 10.0.1 of Publify, corresponding to versions prior to 10.0.2 of the `publify_core` rubygem, publisher... |
| N/A | 2025-03-28 | CVE-2024-48615 | cve | Null Pointer Dereference vulnerability in libarchive 3.7.6 and earlier when running program bsdtar in function header_pax_extension at rchive_read_support_format_tar.c:1844:8. |
| N/A | 2025-03-28 | CVE-2024-51624 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jajapagamentos Já-Já Pagamentos for WooCommerce allows Reflected ... |
| Page(s) : 1 ... 623 624 625 626 627 628 629 630 631 632 [633] 634 635 636 637 638 639 640 641 642 643 ... | Result(s) : 299828 |
