| Page(s) : 1 ... 748 749 750 751 752 753 754 755 756 757 [758] 759 760 761 762 763 764 765 766 767 768 ... | Result(s) : 325902 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-03-15 | CVE-2025-1771 | cve | The Traveler theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.1.8 via the 'hotel_alone_load_more_post' function '... |
| 6.1 | 2025-03-15 | CVE-2025-1773 | cve | The Traveler theme for WordPress is vulnerable to Reflected Cross-Site Scripting via multiple parameters in all versions up to, and including, 3.1.8 due to insufficient input sa... |
| 8.6 | 2025-03-15 | CVE-2025-30066 | cve | tj-actions changed-files before 46 allows remote attackers to discover secrets by reading actions logs. (The tags v1 through v45.0.7 were affected on 2025-03-14 and 2025-03-15 b... |
| 4.9 | 2025-03-15 | CVE-2019-25222 | cve | The Thumbnail carousel slider plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.4 due to insufficien... |
| 3.3 | 2025-03-15 | CVE-2025-2157 | cve | A flaw was found in Foreman/Red Hat Satellite. Improper file permissions allow low-privileged OS users to monitor and access temporary files under /var/tmp, exposing sensitive c... |
| 6.1 | 2025-03-15 | CVE-2025-2325 | cve | The WP Test Email plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Email Logs in all versions up to, and including, 1.1.8 due to insufficient input sanitiza... |
| 4.3 | 2025-03-15 | CVE-2025-1057 | cve | A flaw was found in Keylime, a remote attestation solution, where strict type checking introduced in version 7.12.0 prevents the registrar from reading database entries created ... |
| 8.8 | 2025-03-15 | CVE-2025-1653 | cve | The Directory Listings WordPress plugin – uListing plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.1.7. This is due to the stm... |
| 8.8 | 2025-03-15 | CVE-2025-1657 | cve | The Directory Listings WordPress plugin – uListing plugin for WordPress is vulnerable to unauthorized modification of data and PHP Object Injection due to a missing capability c... |
| 6.5 | 2025-03-15 | CVE-2024-12336 | cve | The WC Affiliate – A Complete WooCommerce Affiliate Plugin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'expor... |
| N/A | 2025-03-15 | CVE-2024-13847 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been re... |
| 4.3 | 2025-03-15 | CVE-2025-1667 | cve | The School Management System – WPSchoolPress plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the wpsp_UpdateTeacher() function in... |
| 5.4 | 2025-03-15 | CVE-2025-1668 | cve | The School Management System – WPSchoolPress plugin for WordPress is vulnerable to arbitrary user deletion due to a missing capability check on the wpsp_DeleteUser() function in... |
| 6.5 | 2025-03-15 | CVE-2025-1669 | cve | The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'addNotify' action in all versions up to, and including, 2.2.1... |
| 6.5 | 2025-03-15 | CVE-2025-1670 | cve | The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including, 2.2.16 d... |
| 5.4 | 2025-03-15 | CVE-2025-2163 | cve | The Zoorum Comments plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.9. This is due to missing or incorrect nonce validat... |
| 6.1 | 2025-03-15 | CVE-2025-2164 | cve | The pixelstats plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'post_id' and 'sortby' parameters in all versions up to, and incl... |
| 6.5 | 2025-03-15 | CVE-2025-2267 | cve | The WP01 plugin for WordPress is vulnerable to Arbitrary File Download in all versions up to, and including, 2.6.2 due to a missing capability check and insufficient restriction... |
| N/A | 2025-03-14 | CVE-2025-2295 | cve | EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to deni... |
| 7.3 | 2025-03-14 | CVE-2025-2320 | cve | A vulnerability has been found in 274056675 springboot-openai-chatgpt e84f6f5 and classified as critical. Affected by this vulnerability is the function submit of the file /api/... |
| Page(s) : 1 ... 748 749 750 751 752 753 754 755 756 757 [758] 759 760 761 762 763 764 765 766 767 768 ... | Result(s) : 325902 |
