| Page(s) : 1 ... 758 759 760 761 762 763 764 765 766 767 [768] 769 770 771 772 773 774 775 776 777 778 ... | Result(s) : 300103 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-11 | CVE-2024-46663 | cve | A stack-buffer overflow vulnerability [CWE-121] in Fortinet FortiMail CLI version 7.6.0 through 7.6.1 and before 7.4.3 allows a privileged attacker to execute arbitrary code or ... |
| N/A | 2025-03-11 | CVE-2024-51319 | cve | A local file include vulnerability in the /servlet/Report of Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve Remote Code Execution by uploading a jsp w... |
| N/A | 2025-03-11 | CVE-2024-51320 | cve | Cross Site Scripting vulnerability in Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve Remote Code Execution via the /servlet/gsdm_fsave_htmltmp, /servl... |
| N/A | 2025-03-11 | CVE-2024-51321 | cve | In Zucchetti Ad Hoc Infinity 2.4, an improper check on the m_cURL parameter allows an attacker to redirect the victim to an attacker-controlled website after the authentication. |
| N/A | 2025-03-11 | CVE-2024-51322 | cve | Cross Site Scripting vulnerability in Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve Remote Code Execution via the /jsp/home.jsp, /jsp/gsfr_feditorHTM... |
| N/A | 2025-03-11 | CVE-2024-52960 | cve | A client-side enforcement of server-side security vulnerability [CWE-602] in Fortinet FortiSandbox version 5.0.0, 4.4.0 through 4.4.6 and before 4.2.7 allows an authenticated at... |
| N/A | 2025-03-11 | CVE-2024-52961 | cve | An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] in Fortinet FortiSandbox version 5.0.0, 4.4.0 through 4.4.7, 4.2.0 through 4.2.7 and ... |
| N/A | 2025-03-11 | CVE-2024-54018 | cve | Multiple improper neutralization of special elements used in an OS Command vulnerabilities [CWE-78] in FortiSandbox before 4.4.5 allows a privileged attacker to execute unauthor... |
| N/A | 2025-03-11 | CVE-2024-54026 | cve | An improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiSandbox Cloud version 23.4, FortiSandbox at least 4.4.0 throug... |
| N/A | 2025-03-11 | CVE-2024-55590 | cve | Multiple improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerabilities [CWE-78] in Fortinet FortiIsolator version 2.4.0 th... |
| N/A | 2025-03-11 | CVE-2024-55592 | cve | An incorrect authorization vulnerability [CWE-863] in FortiSIEM 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.7 all versions, 6.6 all versions, 6.5 all versions, 6.4 a... |
| N/A | 2025-03-11 | CVE-2024-55597 | cve | A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiWeb versions 7.0.0 through 7.6.0 allows attacker to execute unauthori... |
| N/A | 2025-03-11 | CVE-2025-22454 | cve | Insufficiently restrictive permissions in Ivanti Secure Access Client before 22.7R4 allows a local authenticated attacker to escalate their privileges. |
| N/A | 2025-03-11 | CVE-2025-27403 | cve | Ratify is a verification engine as a binary executable and on Kubernetes which enables verification of artifact security metadata and admits for deployment only those that compl... |
| 6.1 | 2025-03-11 | CVE-2024-13413 | cve | The ProductDyno plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘res’ parameter in all versions up to, and including, 1.0.24 due to insufficient inp... |
| N/A | 2025-03-11 | CVE-2024-13574 | cve | The XV Random Quotes WordPress plugin through 1.40 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting wh... |
| N/A | 2025-03-11 | CVE-2024-13580 | cve | The XV Random Quotes WordPress plugin through 1.40 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin reset them... |
| N/A | 2025-03-11 | CVE-2024-13615 | cve | The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social Snap WordPress plugin through 1.3.6 does not sanitise and escape some of its setti... |
| N/A | 2025-03-11 | CVE-2024-13836 | cve | The WP Login Control WordPress plugin through 2.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting w... |
| N/A | 2025-03-11 | CVE-2024-13853 | cve | The SEO Tools WordPress plugin through 4.0.7 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which co... |
| Page(s) : 1 ... 758 759 760 761 762 763 764 765 766 767 [768] 769 770 771 772 773 774 775 776 777 778 ... | Result(s) : 300103 |
