| Page(s) : 1 ... 728 729 730 731 732 733 734 735 736 737 [738] 739 740 741 742 743 744 745 746 747 748 ... | Result(s) : 325831 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-18 | CVE-2025-25586 | cve | yimioa before v2024.07.04 was discovered to contain an information disclosure vulnerability via the component /resources/application.yml. |
| N/A | 2025-03-18 | CVE-2025-25589 | cve | An XML external entity (XXE) injection vulnerability in the component /weixin/aes/XMLParse.java of yimioa before v2024.07.04 allows attackers to execute arbitrary code via suppl... |
| N/A | 2025-03-18 | CVE-2025-27688 | cve | Dell ThinOS 2408 and prior, contains an improper permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to ... |
| 10 | 2025-03-18 | CVE-2024-56346 | cve | IBM AIX 7.2 and 7.3 nimesis NIM master service could allow a remote attacker to execute arbitrary commands due to improper process controls. |
| 9.6 | 2025-03-18 | CVE-2024-56347 | cve | IBM AIX 7.2 and 7.3 nimsh service SSL/TLS protection mechanisms could allow a remote attacker to execute arbitrary commands due to improper process controls. |
| N/A | 2025-03-18 | CVE-2025-25595 | cve | A lack of rate limiting in the login page of Safe App version a3.0.9 allows attackers to bypass authentication via a brute force attack. |
| N/A | 2025-03-18 | CVE-2025-26137 | cve | Systemic Risk Value |
| N/A | 2025-03-18 | CVE-2025-26138 | cve | Systemic Risk Value |
| N/A | 2025-03-18 | CVE-2025-2487 | cve | A flaw was found in the 389-ds-base LDAP Server. This issue occurs when issuing a Modify DN LDAP operation through the ldap protocol, when the function return value is not teste... |
| N/A | 2025-03-18 | CVE-2025-21619 | cve | GLPI is a free asset and IT management software package. An administrator user can perfom a SQL injection through the rules configuration forms. This vulnerability is fixed in 1... |
| N/A | 2025-03-18 | CVE-2025-24799 | cve | GLPI is a free asset and IT management software package. An unauthenticated user can perform a SQL injection through the inventory endpoint. This vulnerability is fixed in 10.0.18. |
| N/A | 2025-03-18 | CVE-2025-24801 | cve | GLPI is a free asset and IT management software package. An authenticated user can upload and force the execution of *.php files located on the GLPI server. This vulnerability i... |
| N/A | 2025-03-18 | CVE-2025-25040 | cve | A vulnerability has been identified in the port ACL functionality of AOS-CX software running on the HPE Aruba Networking CX 9300 Switch Series only and affects: - AOS-CX ... |
| N/A | 2025-03-18 | CVE-2025-25042 | cve | A vulnerability in the AOS-CX REST interface could allow an authenticated remote attacker with low privileges to view sensitive information. Successful exploitation could allow ... |
| N/A | 2025-03-18 | CVE-2025-27080 | cve | Vulnerabilities in the command line interface of AOS-CX could allow an authenticated remote attacker to expose sensitive information. Successful exploitation could allow an atta... |
| N/A | 2025-03-18 | CVE-2025-29790 | cve | Contao is an Open Source CMS. Users can upload SVG files with malicious code, which is then executed in the back end and/or front end. This vulnerability is fixed in Contao 4.13... |
| N/A | 2025-03-18 | CVE-2025-29907 | cve | jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If... |
| N/A | 2025-03-18 | CVE-2025-29930 | cve | imFAQ is an advanced questions and answers management system for ImpressCMS. Prior to 1.0.1, if the $_GET['seoOp'] parameter is manipulated to include malicious input ... |
| N/A | 2025-03-18 | CVE-2025-2489 | cve | Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /U... |
| N/A | 2025-03-18 | CVE-2025-2493 | cve | Path Traversal vulnerability in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to manipulate the ‘id’ parameter of the ‘/softdial/scheduler/load.php... |
| Page(s) : 1 ... 728 729 730 731 732 733 734 735 736 737 [738] 739 740 741 742 743 744 745 746 747 748 ... | Result(s) : 325831 |
