| Page(s) : 1 ... 655 656 657 658 659 660 661 662 663 664 [665] 666 667 668 669 670 671 672 673 674 675 ... | Result(s) : 299868 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.4 | 2025-03-26 | CVE-2024-13702 | cve | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'vCitaMeetingScheduler' and 'vCitaSch... |
| 8.1 | 2025-03-26 | CVE-2024-13801 | cve | The BWL Advanced FAQ Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on th... |
| 7.3 | 2025-03-26 | CVE-2025-1514 | cve | The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to unauthorized filter calling due to insufficient restrictions o... |
| 7.2 | 2025-03-26 | CVE-2025-2009 | cve | The Newsletters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the logging functionality in all versions up to, and including, 4.9.9.7 due to insufficient... |
| 5.4 | 2025-03-26 | CVE-2025-2167 | cve | The Event post plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'events_list' shortcodes in all versions up to, and including, 5... |
| 7.2 | 2025-03-26 | CVE-2025-2257 | cve | The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1... |
| 6.5 | 2025-03-26 | CVE-2025-1310 | cve | The Jobs for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.7.11 via the 'job_postings_get_file' parameter... |
| 6.4 | 2025-03-26 | CVE-2025-1437 | cve | The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and incl... |
| 6.4 | 2025-03-26 | CVE-2025-1439 | cve | The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and incl... |
| 5.3 | 2025-03-26 | CVE-2025-1440 | cve | The Advanced iFrame plugin for WordPress is vulnerable to unauthorized excessive creation of options on the aip_map_url_callback() function in all versions up to, and including,... |
| 6.4 | 2025-03-26 | CVE-2025-1703 | cve | The Ultimate Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, and including, 3.2.7 due to insufficient... |
| N/A | 2025-03-26 | CVE-2025-1542 | cve | Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional adminis... |
| N/A | 2025-03-26 | CVE-2025-27551 | cve | DBIx::Class::EncodedColumn use the rand() function, which is not cryptographically secure to salt password hashes. This vulnerability is associated with program files lib/DBIx/... |
| N/A | 2025-03-26 | CVE-2025-27552 | cve | DBIx::Class::EncodedColumn use the rand() function, which is not cryptographically secure to salt password hashes. This vulnerability is associated with program files Crypt/Eks... |
| N/A | 2025-03-26 | CVE-2025-2596 | cve | Session logout could be overwritten in Checkmk GmbH's Checkmk versions |
| 9.8 | 2025-03-26 | CVE-2024-47516 | cve | A vulnerability was found in Pagure. An argument injection in Git during retrieval of the repository history leads to remote code execution on the Pagure instance. |
| 4.3 | 2025-03-26 | CVE-2025-2276 | cve | The Ultimate Dashboard – Custom WordPress Dashboard plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handle_modul... |
| 6.4 | 2025-03-26 | CVE-2025-2302 | cve | The Advanced Woo Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's aws_search_terms shortcode in all versions up to, and including, ... |
| 6.1 | 2025-03-26 | CVE-2025-1490 | cve | The Smart Maintenance Mode plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘setstatus’ parameter in all versions up to, and including, 1.5.2 due to ... |
| 6.1 | 2025-03-26 | CVE-2025-2165 | cve | The SH Email Alert plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'mid' parameter in all versions up to, and including, 1.0 due to insuff... |
| Page(s) : 1 ... 655 656 657 658 659 660 661 662 663 664 [665] 666 667 668 669 670 671 672 673 674 675 ... | Result(s) : 299868 |
