| Page(s) : 1 ... 750 751 752 753 754 755 756 757 758 759 [760] 761 762 763 764 765 766 767 768 769 770 ... | Result(s) : 325906 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-03-14 | CVE-2025-29384 | cve | In Tenda AC9 v1.0 V15.03.05.14_multi, the wanMTU parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution. |
| 9.8 | 2025-03-14 | CVE-2025-29385 | cve | In Tenda AC9 v1.0 V15.03.05.14_multi, the cloneType parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution. |
| 9.8 | 2025-03-14 | CVE-2025-29386 | cve | In Tenda AC9 v1.0 V15.03.05.14_multi, the mac parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution. |
| 7.1 | 2025-03-14 | CVE-2025-29387 | cve | In Tenda AC9 v1.0 V15.03.05.14_multi, the wanSpeed parameter of /goform/AdvSetMacMtuWan has a stack overflow vulnerability, which can lead to remote arbitrary code execution. |
| N/A | 2025-03-14 | CVE-2025-29774 | cve | xml-crypto is an XML digital signature and encryption library for Node.js. An attacker may be able to exploit a vulnerability in versions prior to 6.0.1, 3.2.1, and 2.1.6 to byp... |
| N/A | 2025-03-14 | CVE-2024-12019 | cve | The API used to interact with documents in the application contains a flaw that allows an authenticated attacker to read the contents of files on the underlying operating system... |
| N/A | 2025-03-14 | CVE-2024-12020 | cve | There is a reflected cross-site scripting (XSS) within JSP files used to control application appearance. An unauthenticated attacker could deceive a user into clicking a crafted... |
| N/A | 2025-03-14 | CVE-2024-12245 | cve | Logout functionality contains a blind SQL injection that can be exploited by unauthenticated attackers. Using a time-based blind SQLi technique the attacker can disclose all dat... |
| N/A | 2025-03-14 | CVE-2024-29409 | cve | File Upload vulnerability in nestjs nest v.10.3.2 allows a remote attacker to execute arbitrary code via the Content-Type header. |
| N/A | 2025-03-14 | CVE-2024-54445 | cve | Login functionality contains a blind SQL injection that can be exploited by unauthenticated attackers. Using a time-based blind SQLi technique the attacker can disclose all data... |
| N/A | 2025-03-14 | CVE-2024-54446 | cve | Document history functionality contains a blind SQL injection that can be exploited by authenticated attackers. Using a time-based blind SQLi technique the attacker can disclose... |
| N/A | 2025-03-14 | CVE-2024-54447 | cve | Saved search functionality contains a blind SQL injection that can be exploited by authenticated attackers. Using a time-based blind SQLi technique the attacker can disclose all... |
| N/A | 2025-03-14 | CVE-2024-54448 | cve | The Automation Scripting functionality can be exploited by attackers to run arbitrary system commands on the underlying operating system. An account with administrator privilege... |
| N/A | 2025-03-14 | CVE-2024-54449 | cve | The API used to interact with documents in the application contains two endpoints with a flaw that allows an authenticated attacker to write a file with controlled contents to a... |
| N/A | 2025-03-14 | CVE-2025-26312 | cve | SendQuick Entera devices before 11HF5 are vulnerable to CAPTCHA bypass by removing the Captcha parameter. |
| N/A | 2025-03-14 | CVE-2025-29775 | cve | xml-crypto is an XML digital signature and encryption library for Node.js. An attacker may be able to exploit a vulnerability in versions prior to 6.0.1, 3.2.1, and 2.1.6 to byp... |
| N/A | 2025-03-14 | CVE-2025-29779 | cve | Post-Quantum Secure Feldman's Verifiable Secret Sharing provides a Python implementation of Feldman's Verifiable Secret Sharing (VSS) scheme. In versions 0.8.0b2 and p... |
| N/A | 2025-03-14 | CVE-2025-29780 | cve | Post-Quantum Secure Feldman's Verifiable Secret Sharing provides a Python implementation of Feldman's Verifiable Secret Sharing (VSS) scheme. In versions 0.8.0b2 and p... |
| N/A | 2025-03-14 | CVE-2025-29771 | cve | HtmlSanitizer is a client-side HTML Sanitizer. Versions prior to 2.0.3 have a cross-site scripting vulnerability when the sanitizer is used with a `contentEditable` element to s... |
| 5.4 | 2025-03-14 | CVE-2025-29782 | cve | WeGIA is Web manager for charitable institutions A Stored Cross-Site Scripting (XSS) vulnerability was identified in the `adicionar_tipo_docs_atendido.php` endpoint in versions ... |
| Page(s) : 1 ... 750 751 752 753 754 755 756 757 758 759 [760] 761 762 763 764 765 766 767 768 769 770 ... | Result(s) : 325906 |
