| Page(s) : 1 ... 59 60 61 62 63 64 65 66 67 68 [69] 70 71 72 73 74 75 76 77 78 79 ... | Result(s) : 124961 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.1 | 2025-05-03 | CVE-2024-41753 | cve | IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF004 and 24.0.1 through 24.0.1 IF001 is vulnerable to cross-site scripting. This vulnerability allows an unauthentic... |
| 5.4 | 2025-05-02 | CVE-2025-47201 | cve | In Intrexx Portal Server before 12.0.4, multiple Velocity-Scripts are susceptible to the execution of unrequested JavaScript code in HTML, aka XSS. |
| 6.3 | 2025-05-02 | CVE-2025-4186 | cve | A vulnerability, which was classified as critical, was found in Wangshen SecGate 3600 2024. Affected is an unknown function of the file /?g=route_ispinfo_export_save. The manipu... |
| 6.3 | 2025-05-02 | CVE-2025-4185 | cve | A vulnerability, which was classified as critical, has been found in Wangshen SecGate 3600 2024. This issue affects some unknown processing of the file ?g=obj_area_export_save. ... |
| 5.3 | 2025-05-02 | CVE-2025-4177 | cve | The Flynax Bridge plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the deleteUser() function in all versions up to, and inclu... |
| 6.4 | 2025-05-02 | CVE-2025-4131 | cve | The GmapsMania plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's gmap shortcode in all versions up to, and including, 1.1 due to insufficie... |
| 5.4 | 2025-05-02 | CVE-2025-3858 | cve | The Formality plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘align’ parameter in all versions up to, and including, 1.5.8 due to insufficient input s... |
| 5.4 | 2025-05-02 | CVE-2025-3748 | cve | The Taxonomy Chain Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pn_chain_menu shortcode in all versions up to, and including, 1.0... |
| 6.5 | 2025-05-02 | CVE-2025-3707 | cve | The eHDR CTMS from Sunnet has a SQL Injection vulnerability, allowing remote attackers with regular privileges to inject arbitrary SQL command to read database contents. |
| 6.4 | 2025-05-02 | CVE-2025-3670 | cve | The KiwiChat NextClient plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 6.2 due to insufficient i... |
| 5.4 | 2025-05-02 | CVE-2025-3510 | cve | The tagDiv Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple shortcodes in all versions up to, and including, 5.4 due to insufficient input... |
| 5.4 | 2025-05-02 | CVE-2025-3488 | cve | The WPML plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpml_language_switcher shortcode in versions 3.6.0 - 4.7.3 due to insufficient i... |
| 6.5 | 2025-05-02 | CVE-2025-29825 | cve | User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network. |
| 5.3 | 2025-05-02 | CVE-2025-2880 | cve | The Yame | Link In Bio plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 0.9.0 through the publicly accessible phpinfo.p... |
| 6.1 | 2025-05-02 | CVE-2025-2488 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Profelis Informatics SambaBox allows Cross-Site Scripting ... |
| 4.3 | 2025-05-02 | CVE-2025-1327 | cve | The Homey theme for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.4.4 via the 'homey_delete_user_account' action ... |
| 4.3 | 2025-05-02 | CVE-2025-1326 | cve | The Homey theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the homey_reservation_del() function in all versions up to,... |
| 6.1 | 2025-05-02 | CVE-2025-1301 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Yordam Informatics Library Automation System allows Reflec... |
| 5.3 | 2025-05-02 | CVE-2024-55913 | cve | IBM Concert Software 1.0.0 through 1.0.5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "... |
| 5.9 | 2025-05-02 | CVE-2024-55912 | cve | IBM Concert Software 1.0.0 through 1.0.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. |
| Page(s) : 1 ... 59 60 61 62 63 64 65 66 67 68 [69] 70 71 72 73 74 75 76 77 78 79 ... | Result(s) : 124961 |
