| Page(s) : 1 ... 672 673 674 675 676 677 678 679 680 681 [682] 683 684 685 686 687 688 689 690 691 692 ... | Result(s) : 325685 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-26 | CVE-2025-28924 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound ZenphotoPress allows Reflected XSS. This issue affects Z... |
| N/A | 2025-03-26 | CVE-2025-28928 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sureshdsk Are you robot google recaptcha for wordpress allows Ref... |
| N/A | 2025-03-26 | CVE-2025-28934 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Simple Post Series allows Reflected XSS. This issue affe... |
| N/A | 2025-03-26 | CVE-2025-28935 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in puzich Fancybox Plus allows Reflected XSS. This issue affects Fan... |
| N/A | 2025-03-26 | CVE-2025-28939 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WP Google Calendar Manager allows Blind SQL Injection. T... |
| N/A | 2025-03-26 | CVE-2025-28942 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Trust Payments Trust Payments Gateway for WooCommerce allows SQL ... |
| N/A | 2025-03-26 | CVE-2025-2819 | cve | There is a risk of unauthorized file uploads in GT-SoftControl and potential file overwrites due to insufficient validation in the file selection process. This could lead to dat... |
| N/A | 2025-03-26 | CVE-2025-2820 | cve | An authenticated attacker can compromise the availability of the device via the network |
| N/A | 2025-03-26 | CVE-2025-30524 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in origincode Product Catalog allows SQL Injection. This issue affec... |
| N/A | 2025-03-26 | CVE-2024-11847 | cve | The wp-svg-upload WordPress plugin through 1.0.0 does not sanitize SVG file contents, which enables users with at least the author role to SVG with malicious JavaScript to condu... |
| N/A | 2025-03-26 | CVE-2024-12683 | cve | The Smart Maintenance Mode WordPress plugin before 1.5.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store... |
| N/A | 2025-03-26 | CVE-2024-13146 | cve | The Booknetic WordPress plugin before 4.1.5 does not have CSRF check when creating Staff accounts, which could allow attackers to make logged in admin add arbitrary Staff member... |
| 6.4 | 2025-03-26 | CVE-2025-1784 | cve | The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the uagb block in all versions up to, and including, 2.19.0 due to... |
| N/A | 2025-03-26 | CVE-2023-52972 | cve | Huawei PCs have a vulnerability that allows low-privilege users to bypass SDDL permission checks . Successful exploitation this vulnerability could lead to termination of some s... |
| N/A | 2025-03-26 | CVE-2024-30155 | cve | HCL SX does not set the secure attribute on authorization tokens or session cookies. Attackers may potentially be able to obtain access to the cookie values via a Cross-Site-For... |
| 5.4 | 2025-03-26 | CVE-2024-13702 | cve | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'vCitaMeetingScheduler' and 'vCitaSch... |
| 8.1 | 2025-03-26 | CVE-2024-13801 | cve | The BWL Advanced FAQ Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on th... |
| 7.3 | 2025-03-26 | CVE-2025-1514 | cve | The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to unauthorized filter calling due to insufficient restrictions o... |
| 7.2 | 2025-03-26 | CVE-2025-2009 | cve | The Newsletters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the logging functionality in all versions up to, and including, 4.9.9.7 due to insufficient... |
| 5.4 | 2025-03-26 | CVE-2025-2167 | cve | The Event post plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'events_list' shortcodes in all versions up to, and including, 5... |
| Page(s) : 1 ... 672 673 674 675 676 677 678 679 680 681 [682] 683 684 685 686 687 688 689 690 691 692 ... | Result(s) : 325685 |
