| Page(s) : 1 ... 708 709 710 711 712 713 714 715 716 717 [718] 719 720 721 722 723 724 725 726 727 728 ... | Result(s) : 299944 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-18 | CVE-2025-25500 | cve | An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. This allows attacke... |
| N/A | 2025-03-18 | CVE-2025-2449 | cve | NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected i... |
| N/A | 2025-03-18 | CVE-2025-2450 | cve | NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected i... |
| 2.4 | 2025-03-18 | CVE-2025-2490 | cve | A vulnerability was found in Dromara ujcms 9.7.5. It has been rated as problematic. Affected by this issue is the function uploadZip/upload of the file /main/java/com/ujcms/cms/... |
| N/A | 2025-03-18 | CVE-2025-30106 | cve | On IROAD v9 devices, the dashcam has hardcoded default credentials ("qwertyuiop") that cannot be changed by the user. This allows an attacker within Wi-Fi range to connect to th... |
| N/A | 2025-03-18 | CVE-2024-44313 | cve | TastyIgniter 3.7.6 contains an Incorrect Access Control vulnerability in the invoice() function within Orders.php which allows unauthorized users to access and generate invoices... |
| N/A | 2025-03-18 | CVE-2024-44314 | cve | TastyIgniter 3.7.6 contains an Incorrect Access Control vulnerability in the Orders Management System, allowing unauthorized users to update order statuses. The issue occurs in ... |
| 4.1 | 2025-03-18 | CVE-2024-49822 | cve | IBM QRadar Advisor 1.0.0 through 2.6.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the syste... |
| N/A | 2025-03-18 | CVE-2025-25580 | cve | yimioa before v2024.07.04 was discovered to contain a SQL injection vulnerability via the listNameBySql() method at /xml/UserMapper.xml. |
| N/A | 2025-03-18 | CVE-2025-25585 | cve | Incorrect access control in the component /config/WebSecurityConfig.java of yimioa before v2024.07.04 allows unauthorized attackers to arbitrarily modify Administrator passwords. |
| N/A | 2025-03-18 | CVE-2025-25590 | cve | yimioa before v2024.07.04 was discovered to contain a SQL injection vulnerability via the component /mapper/xml/AddressDao.xml. |
| 2.4 | 2025-03-18 | CVE-2025-2491 | cve | A vulnerability classified as problematic has been found in Dromara ujcms 9.7.5. This affects the function update of the file /main/java/com/ujcms/cms/ext/web/backendapi/WebFile... |
| N/A | 2025-03-18 | CVE-2025-30107 | cve | On IROAD V9 devices, Managing Settings and Obtaining Sensitive Data and Sabotaging the Car Battery can be performed by unauthorized parties. A vulnerability in the dashcam'... |
| N/A | 2025-03-18 | CVE-2025-30109 | cve | In the IROAD APK 5.2.5, there are Hardcoded Credentials in the APK for ports 9091 and 9092. The mobile application for the dashcam contains hardcoded credentials that allow an a... |
| N/A | 2025-03-18 | CVE-2025-30110 | cve | On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an a... |
| N/A | 2025-03-18 | CVE-2025-30111 | cve | On IROAD v9 devices, one can Remotely Dump Video Footage and the Live Video Stream. The dashcam exposes endpoints that allow unauthorized users, who gained access through other ... |
| N/A | 2025-03-18 | CVE-2025-30113 | cve | An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Hardcoded Credentials exist in the APK for Ports 9091 and 9092. The dashcam's Android application... |
| N/A | 2025-03-18 | CVE-2025-30114 | cve | An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Bypassing of Device Pairing can occur. The pairing mechanism relies solely on the connecting device�... |
| N/A | 2025-03-18 | CVE-2025-30115 | cve | An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Default Credentials Cannot Be Changed. It uses a fixed default SSID and password ("qwertyuiop"), which... |
| N/A | 2025-03-18 | CVE-2025-30116 | cve | An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Remotely Dumping of Video Footage and the Live Video Stream can occur. It allows remote attackers to a... |
| Page(s) : 1 ... 708 709 710 711 712 713 714 715 716 717 [718] 719 720 721 722 723 724 725 726 727 728 ... | Result(s) : 299944 |
