| Page(s) : 1 ... 624 625 626 627 628 629 630 631 632 633 [634] 635 636 637 638 639 640 641 642 643 644 ... | Result(s) : 299828 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-28 | CVE-2024-54291 | cve | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NotFound PluginPass allows Manipulating Web Input to File System Calls.... |
| N/A | 2025-03-28 | CVE-2024-54362 | cve | Path Traversal vulnerability in NotFound GetShop ecommerce allows Path Traversal. This issue affects GetShop ecommerce: from n/a through 1.3. |
| N/A | 2025-03-28 | CVE-2025-22356 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Stencies Stencies allows Reflected XSS. This issue affects Stenci... |
| N/A | 2025-03-28 | CVE-2025-22360 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Azure offload allows Reflected XSS. This issue affect... |
| N/A | 2025-03-28 | CVE-2025-22501 | cve | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Improve My City Improve My City allows Reflected XSS. This issue affects Improve M... |
| N/A | 2025-03-28 | CVE-2025-22523 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Schedule allows Blind SQL Injection. This issue affects ... |
| N/A | 2025-03-28 | CVE-2025-22526 | cve | Deserialization of Untrusted Data vulnerability in NotFound PHP/MySQL CPU performance statistics allows Object Injection. This issue affects PHP/MySQL CPU performance statistics... |
| N/A | 2025-03-28 | CVE-2025-22566 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound ULTIMATE VIDEO GALLERY allows Reflected XSS. This issue ... |
| N/A | 2025-03-28 | CVE-2025-22575 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in extendyourweb SUPER RESPONSIVE SLIDER allows Reflected XSS. This ... |
| N/A | 2025-03-28 | CVE-2025-22767 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in globalpayments GlobalPayments WooCommerce allows Reflected XSS. T... |
| N/A | 2025-03-28 | CVE-2025-29928 | cve | authentik is an open-source identity provider. Prior to versions 2024.12.4 and 2025.2.3, when authentik was configured to use the database for session storage (which is a non-de... |
| N/A | 2025-03-28 | CVE-2025-30211 | cve | Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.1, 26.2.5.10, and 25.3.2.19, a maliciously formed KEX init message can result wi... |
| N/A | 2025-03-28 | CVE-2025-30371 | cve | Metabase is a business intelligence and embedded analytics tool. Versions prior to v0.52.16.4, v1.52.16.4, v0.53.8, and v1.53.8 are vulnerable to circumvention of local link acc... |
| 9.8 | 2025-03-28 | CVE-2025-30372 | cve | Emlog is an open source website building system. Emlog Pro versions pro-2.5.7 and pro-2.5.8 contain an SQL injection vulnerability. `search_controller.php` does not use addslash... |
| N/A | 2025-03-28 | CVE-2025-31010 | cve | Cross-Site Request Forgery (CSRF) vulnerability in ReichertBrothers SimplyRETS Real Estate IDX allows Cross Site Request Forgery. This issue affects SimplyRETS Real Estate IDX: ... |
| N/A | 2025-03-28 | CVE-2025-31335 | cve | The OpenSAML C++ library before 3.3.1 allows forging of signed SAML messages via parameter manipulation (when using SAML bindings that rely on non-XML signatures). |
| 6.1 | 2025-03-28 | CVE-2025-2804 | cve | The tagDiv Composer plugin for WordPress, used by the Newspaper theme, is vulnerable to Reflected Cross-Site Scripting via the 'account_id' and 'account_username&... |
| 9.8 | 2025-03-28 | CVE-2025-2294 | cve | The Kubio AI Page Builder plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.5.1 via thekubio_hybrid_theme_load_template function... |
| N/A | 2025-03-28 | CVE-2025-2027 | cve | A double free vulnerability has been identified in the ASUS System Analysis service. This vulnerability can be triggered by sending specially crafted local RPC requests, leading... |
| N/A | 2025-03-28 | CVE-2025-1762 | cve | The Event Tickets with Ticket Scanner WordPress plugin before 2.5.4 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in... |
| Page(s) : 1 ... 624 625 626 627 628 629 630 631 632 633 [634] 635 636 637 638 639 640 641 642 643 644 ... | Result(s) : 299828 |
