| Page(s) : 1 ... 727 728 729 730 731 732 733 734 735 736 [737] 738 739 740 741 742 743 744 745 746 747 ... | Result(s) : 299995 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-14 | CVE-2023-45588 | cve | An external control of file name or path vulnerability [CWE-73] in FortiClientMac version 7.2.3 and below, version 7.0.10 and below installer may allow a local attacker to exec... |
| N/A | 2025-03-14 | CVE-2023-48785 | cve | An improper certificate validation vulnerability [CWE-295] in FortiNAC-F version 7.2.4 and below may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle a... |
| N/A | 2025-03-14 | CVE-2024-40585 | cve | An insertion of sensitive information into log file vulnerabilities [CWE-532] in FortiManager version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, version 6.4.12 and... |
| N/A | 2025-03-14 | CVE-2025-25871 | cve | An issue in Open Panel v.0.3.4 allows a remote attacker to escalate privileges via the Fix Permissions function |
| N/A | 2025-03-14 | CVE-2025-25872 | cve | An issue in Open Panel v.0.3.4 allows a remote attacker to escalate privileges via the Fix Permissions function |
| N/A | 2025-03-14 | CVE-2025-25873 | cve | Cross Site Request Forgery vulnerability in Open Panel OpenAdmin v.0.3.4 allows a remote attacker to escalate privileges via the Change Root Password function |
| N/A | 2025-03-14 | CVE-2024-55594 | cve | An improper handling of syntactically invalid structure in Fortinet FortiWeb at least vesrions 7.4.0 through 7.4.6 and 7.2.0 through 7.2.10 and 7.0.0 through 7.0.10 allows attac... |
| N/A | 2025-03-14 | CVE-2025-1888 | cve | The Leica Web Viewer within the Aperio Eslide Manager Application is vulnerable to reflected cross-site scripting (XSS). An authenticated user can access the slides within a pro... |
| N/A | 2025-03-14 | CVE-2025-26215 | cve | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security iss... |
| N/A | 2025-03-14 | CVE-2025-26216 | cve | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security iss... |
| N/A | 2025-03-14 | CVE-2025-27606 | cve | Element Android is an Android Matrix Client provided by Element. Element Android up to version 1.6.32 can, under certain circumstances, fail to logout the user if they input the... |
| 9.8 | 2025-03-14 | CVE-2025-29384 | cve | In Tenda AC9 v1.0 V15.03.05.14_multi, the wanMTU parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution. |
| 9.8 | 2025-03-14 | CVE-2025-29385 | cve | In Tenda AC9 v1.0 V15.03.05.14_multi, the cloneType parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution. |
| 9.8 | 2025-03-14 | CVE-2025-29386 | cve | In Tenda AC9 v1.0 V15.03.05.14_multi, the mac parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution. |
| 7.1 | 2025-03-14 | CVE-2025-29387 | cve | In Tenda AC9 v1.0 V15.03.05.14_multi, the wanSpeed parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution. |
| N/A | 2025-03-14 | CVE-2025-29774 | cve | xml-crypto is an XML digital signature and encryption library for Node.js. An attacker may be able to exploit a vulnerability in versions prior to 6.0.1, 3.2.1, and 2.1.6 to byp... |
| N/A | 2025-03-14 | CVE-2024-12019 | cve | The API used to interact with documents in the application contains a flaw that allows an authenticated attacker to read the contents of files on the underlying operating system... |
| N/A | 2025-03-14 | CVE-2024-12020 | cve | There is a reflected cross-site scripting (XSS) within JSP files used to control application appearance. An unauthenticated attacker could deceive a user into clicking a crafted... |
| N/A | 2025-03-14 | CVE-2024-12245 | cve | Logout functionality contains a blind SQL injection that can be exploited by unauthenticated attackers. Using a time-based blind SQLi technique the attacker can disclose all dat... |
| N/A | 2025-03-14 | CVE-2024-29409 | cve | File Upload vulnerability in nestjs nest v.10.3.2 allows a remote attacker to execute arbitrary code via the Content-Type header. |
| Page(s) : 1 ... 727 728 729 730 731 732 733 734 735 736 [737] 738 739 740 741 742 743 744 745 746 747 ... | Result(s) : 299995 |
