| Page(s) : 1 ... 673 674 675 676 677 678 679 680 681 682 [683] 684 685 686 687 688 689 690 691 692 693 ... | Result(s) : 325685 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.2 | 2025-03-26 | CVE-2025-2257 | cve | The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1... |
| 6.5 | 2025-03-26 | CVE-2025-1310 | cve | The Jobs for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.7.11 via the 'job_postings_get_file' parameter... |
| 6.4 | 2025-03-26 | CVE-2025-1437 | cve | The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and incl... |
| 6.4 | 2025-03-26 | CVE-2025-1439 | cve | The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and incl... |
| 5.3 | 2025-03-26 | CVE-2025-1440 | cve | The Advanced iFrame plugin for WordPress is vulnerable to unauthorized excessive creation of options on the aip_map_url_callback() function in all versions up to, and including,... |
| 6.4 | 2025-03-26 | CVE-2025-1703 | cve | The Ultimate Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, and including, 3.2.7 due to insufficient... |
| N/A | 2025-03-26 | CVE-2025-1542 | cve | Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional adminis... |
| N/A | 2025-03-26 | CVE-2025-27551 | cve | DBIx::Class::EncodedColumn use the rand() function, which is not cryptographically secure to salt password hashes. This vulnerability is associated with program files lib/DBIx/... |
| N/A | 2025-03-26 | CVE-2025-27552 | cve | DBIx::Class::EncodedColumn use the rand() function, which is not cryptographically secure to salt password hashes. This vulnerability is associated with program files Crypt/Eks... |
| N/A | 2025-03-26 | CVE-2025-2596 | cve | Session logout could be overwritten in Checkmk GmbH's Checkmk versions |
| 9.8 | 2025-03-26 | CVE-2024-47516 | cve | A vulnerability was found in Pagure. An argument injection in Git during retrieval of the repository history leads to remote code execution on the Pagure instance. |
| 4.3 | 2025-03-26 | CVE-2025-2276 | cve | The Ultimate Dashboard – Custom WordPress Dashboard plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handle_modul... |
| 6.4 | 2025-03-26 | CVE-2025-2302 | cve | The Advanced Woo Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's aws_search_terms shortcode in all versions up to, and including, ... |
| 6.1 | 2025-03-26 | CVE-2025-1490 | cve | The Smart Maintenance Mode plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘setstatus’ parameter in all versions up to, and including, 1.5.2 due to ... |
| 6.1 | 2025-03-26 | CVE-2025-2165 | cve | The SH Email Alert plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'mid' parameter in all versions up to, and including, 1.0 due to insuff... |
| 6.4 | 2025-03-26 | CVE-2025-2573 | cve | The Amazing service box Addons For WPBakery Page Builder (formerly Visual Composer) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all... |
| 6.4 | 2025-03-26 | CVE-2025-2576 | cve | The Ayyash Studio — The kick-start kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.3 due to ... |
| N/A | 2025-03-26 | CVE-2025-30742 | cve | httpd.c in atophttpd 2.8.0 has an off-by-one error and resultant out-of-bounds read because a certain 1024-character req string would not have a final '\0' character. |
| N/A | 2025-03-25 | CVE-2025-30219 | cve | RabbitMQ is a messaging and streaming broker. Versions prior to 4.0.3 are vulnerable to a sophisticated attack that could modify virtual host name on disk and then make it unrec... |
| N/A | 2025-03-25 | CVE-2025-30222 | cve | Shescape is a simple shell escape library for JavaScript. Versions 1.7.2 through 2.1.1 are vulnerable to potential environment variable exposure on Windows with CMD. This impact... |
| Page(s) : 1 ... 673 674 675 676 677 678 679 680 681 682 [683] 684 685 686 687 688 689 690 691 692 693 ... | Result(s) : 325685 |
