| Page(s) : 1 ... 59 60 61 62 63 64 65 66 67 68 [69] 70 71 72 73 74 75 76 77 78 79 ... | Result(s) : 114978 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.4 | 2025-04-22 | CVE-2025-3457 | cve | The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'oceanwp_icon' shortcode in all versions up to, and including, ... |
| 4.3 | 2025-04-22 | CVE-2025-32788 | cve | OctoPrint provides a web interface for controlling consumer 3D printers. In versions up to and including 1.10.3, OctoPrint has a vulnerability that allows an attacker to bypass ... |
| 4.6 | 2025-04-22 | CVE-2025-31328 | cve | SAP Learning Solution is vulnerable to Cross-Site Request Forgery (CSRF), allowing an attacker to trick authenticated user into sending unintended requests to the server. GET-ba... |
| 4.3 | 2025-04-22 | CVE-2025-31327 | cve | SAP Field Logistics Manage Logistics application OData meta-data property is vulnerable to data tampering, due to which certain fields could be externally modified by an attacke... |
| 6.4 | 2025-04-22 | CVE-2025-2839 | cve | The WP Import Export Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wpiePreviewData’ function in all versions up to, and including, 3.9.27 due t... |
| 4.1 | 2025-04-22 | CVE-2025-27907 | cve | IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the... |
| 5.3 | 2025-04-21 | CVE-2025-43970 | cve | An issue was discovered in GoBGP before 3.35.0. pkg/packet/mrt/mrt.go does not properly check the input length, e.g., by ensuring that there are 12 bytes or 36 bytes (depending ... |
| 4.3 | 2025-04-21 | CVE-2025-3843 | cve | A vulnerability was found in panhainan DS-Java 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery.... |
| 6.3 | 2025-04-21 | CVE-2025-3842 | cve | A vulnerability was found in panhainan DS-Java 1.0 and classified as critical. This issue affects the function uploadUserPic.action of the file src/com/phn/action/FileUpload.jav... |
| 6.1 | 2025-04-20 | CVE-2025-43954 | cve | QMarkdown (aka quasar-ui-qmarkdown) before 2.0.5 allows XSS via headers even when when no-html is set. |
| 5.3 | 2025-04-20 | CVE-2025-43921 | cve | GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to create lists via the /mailman/create endpoint. NOTE: multiple third parties report that t... |
| 4.1 | 2025-04-20 | CVE-2025-3826 | cve | A vulnerability, which was classified as problematic, was found in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown part of the file add-... |
| 4.1 | 2025-04-20 | CVE-2025-3825 | cve | A vulnerability, which was classified as problematic, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this issue is some unknown f... |
| 4.1 | 2025-04-20 | CVE-2025-3824 | cve | A vulnerability classified as problematic was found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this vulnerability is an unknown functionalit... |
| 4.1 | 2025-04-20 | CVE-2025-3823 | cve | A vulnerability classified as problematic has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected is an unknown function of the file add-stoc... |
| 5.4 | 2025-04-20 | CVE-2025-3822 | cve | A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the... |
| 5.4 | 2025-04-20 | CVE-2025-3821 | cve | A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the... |
| 6.1 | 2025-04-20 | CVE-2020-36845 | cve | The KnowBe4 Security Awareness Training application before 2020-01-10 contains a redirect function that does not validate the destination URL before redirecting. The response ha... |
| 6.1 | 2025-04-20 | CVE-2020-36844 | cve | The KnowBe4 Security Awareness Training application before 2020-01-10 allows reflected XSS. The response has a SCRIPT element that sets window.location.href to a JavaScript URL. |
| 4.7 | 2025-04-19 | CVE-2025-3816 | cve | A vulnerability classified as critical was found in westboy CicadasCMS 2.0. This vulnerability affects unknown code of the file /system/schedule/save of the component Scheduled ... |
| Page(s) : 1 ... 59 60 61 62 63 64 65 66 67 68 [69] 70 71 72 73 74 75 76 77 78 79 ... | Result(s) : 114978 |
