| Page(s) : 1 ... 729 730 731 732 733 734 735 736 737 738 [739] 740 741 742 743 744 745 746 747 748 749 ... | Result(s) : 325831 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-18 | CVE-2025-2494 | cve | Unrestricted file upload to Softdial Contact Center of Sytel Ltd. This vulnerability could allow an attacker to upload files to the server via the ‘/softdial/phpconsole/upload.p... |
| N/A | 2025-03-18 | CVE-2025-2495 | cve | Stored Cross-Site Scripting (XSS) in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to upload XML files to the server with JavaScript code injected ... |
| N/A | 2025-03-18 | CVE-2023-47539 | cve | An improper access control vulnerability in FortiMail version 7.4.0 configured with RADIUS authentication and remote_wildcard enabled may allow a remote unauthenticated attacker... |
| N/A | 2025-03-18 | CVE-2024-21760 | cve | An improper control of generation of code ('Code Injection') vulnerability [CWE-94] in FortiSOAR Connector FortiSOAR 7.4 all versions, 7.3 all versions, 7.2 all versio... |
| N/A | 2025-03-18 | CVE-2024-8997 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Vestel EVC04 Configuration Interface allows SQL Injection.This is... |
| N/A | 2025-03-18 | CVE-2025-25500 | cve | An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. This allows attacke... |
| N/A | 2025-03-18 | CVE-2025-2449 | cve | NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected i... |
| N/A | 2025-03-18 | CVE-2025-2450 | cve | NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected i... |
| 2.4 | 2025-03-18 | CVE-2025-2490 | cve | A vulnerability was found in Dromara ujcms 9.7.5. It has been rated as problematic. Affected by this issue is the function uploadZip/upload of the file /main/java/com/ujcms/cms/... |
| N/A | 2025-03-18 | CVE-2025-30106 | cve | On IROAD v9 devices, the dashcam has hardcoded default credentials ("qwertyuiop") that cannot be changed by the user. This allows an attacker within Wi-Fi range to connect to th... |
| N/A | 2025-03-18 | CVE-2024-44313 | cve | TastyIgniter 3.7.6 contains an Incorrect Access Control vulnerability in the invoice() function within Orders.php which allows unauthorized users to access and generate invoices... |
| N/A | 2025-03-18 | CVE-2024-44314 | cve | TastyIgniter 3.7.6 contains an Incorrect Access Control vulnerability in the Orders Management System, allowing unauthorized users to update order statuses. The issue occurs in ... |
| 4.1 | 2025-03-18 | CVE-2024-49822 | cve | IBM QRadar Advisor 1.0.0 through 2.6.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the syste... |
| N/A | 2025-03-18 | CVE-2025-25580 | cve | yimioa before v2024.07.04 was discovered to contain a SQL injection vulnerability via the listNameBySql() method at /xml/UserMapper.xml. |
| N/A | 2025-03-18 | CVE-2025-25585 | cve | Incorrect access control in the component /config/WebSecurityConfig.java of yimioa before v2024.07.04 allows unauthorized attackers to arbitrarily modify Administrator passwords. |
| N/A | 2025-03-18 | CVE-2025-25590 | cve | yimioa before v2024.07.04 was discovered to contain a SQL injection vulnerability via the component /mapper/xml/AddressDao.xml. |
| 2.4 | 2025-03-18 | CVE-2025-2491 | cve | A vulnerability classified as problematic has been found in Dromara ujcms 9.7.5. This affects the function update of the file /main/java/com/ujcms/cms/ext/web/backendapi/WebFile... |
| N/A | 2025-03-18 | CVE-2025-30107 | cve | On IROAD V9 devices, Managing Settings and Obtaining Sensitive Data and Sabotaging the Car Battery can be performed by unauthorized parties. A vulnerability in the dashcam'... |
| N/A | 2025-03-18 | CVE-2025-30109 | cve | In the IROAD APK 5.2.5, there are Hardcoded Credentials in the APK for ports 9091 and 9092. The mobile application for the dashcam contains hardcoded credentials that allow an a... |
| N/A | 2025-03-18 | CVE-2025-30110 | cve | On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an a... |
| Page(s) : 1 ... 729 730 731 732 733 734 735 736 737 738 [739] 740 741 742 743 744 745 746 747 748 749 ... | Result(s) : 325831 |
