| Page(s) : 1 ... 763 764 765 766 767 768 769 770 771 772 [773] 774 775 776 777 778 779 780 781 782 783 ... | Result(s) : 300103 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-10 | CVE-2025-27610 | cve | Rack provides an interface for developing web applications in Ruby. Prior to versions 2.2.13, 3.0.14, and 3.1.12, `Rack::Static` can serve files under the specified `root:` even... |
| N/A | 2025-03-10 | CVE-2025-27924 | cve | Nintex Automation 5.6 and 5.7 before 5.8 has a stored XSS issue associated with the "Navigate to a URL" action. |
| N/A | 2025-03-10 | CVE-2025-27925 | cve | Nintex Automation 5.6 and 5.7 before 5.8 has insecure deserialization of user input. |
| N/A | 2025-03-10 | CVE-2025-27926 | cve | In Nintex Automation 5.6 and 5.7 before 5.8, the K2 SmartForms Designer folder has configuration files (web.config) containing passwords that are readable by unauthorized users. |
| N/A | 2025-03-10 | CVE-2022-43454 | cve | A double free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.1, watchOS 9.2, iOS 16.2 and iPadOS 16.2, tvOS 16.2. An app may be abl... |
| N/A | 2025-03-10 | CVE-2022-48610 | cve | This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.1, watchOS 9.2, iOS 16.2 and iPadOS 16.2. An app may be able to access user-s... |
| N/A | 2025-03-10 | CVE-2025-27913 | cve | Passbolt API before 5, if the server is misconfigured (with an incorrect installation process and disregarding of Health Check results), can send email messages with a domain na... |
| N/A | 2025-03-10 | CVE-2024-56191 | cve | In dhd_process_full_gscan_result of dhd_pno.c, there is a possible EoP due to an integer overflow. This could lead to local escalation of privilege with no additional execution ... |
| N/A | 2025-03-10 | CVE-2024-56192 | cve | In wl_notify_gscan_event of wl_cfgscan.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additio... |
| N/A | 2025-03-10 | CVE-2025-0660 | cve | Concrete CMS versions 9.0.0 through 9.3.9 are affected by a stored XSS in Folder Function.The "Add Folder" functionality lacks input sanitization, allowing a rogue admin to inje... |
| N/A | 2025-03-10 | CVE-2025-1920 | cve | Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severit... |
| N/A | 2025-03-10 | CVE-2025-2135 | cve | Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severit... |
| N/A | 2025-03-10 | CVE-2025-2136 | cve | Use after free in Inspector in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security ... |
| N/A | 2025-03-10 | CVE-2025-2137 | cve | Out of bounds read in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security sev... |
| 5.3 | 2025-03-10 | CVE-2024-47109 | cve | IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 UI could disclosure the installation path of the server which could aid in further attacks against ... |
| 2.7 | 2025-03-10 | CVE-2024-52905 | cve | IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 could disclose sensitive database information to a privileged user. |
| N/A | 2025-03-10 | CVE-2025-25382 | cve | An issue in the Property Tax Payment Portal in Information Kerala Mission SANCHAYA v3.0.4 allows attackers to arbitrarily modify payment amounts via a crafted request. |
| N/A | 2025-03-10 | CVE-2025-25940 | cve | VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java. |
| N/A | 2025-03-10 | CVE-2025-25977 | cve | An issue in canvg v.4.0.2 allows an attacker to execute arbitrary code via the Constructor of the class StyleElement. |
| 9.8 | 2025-03-10 | CVE-2025-24813 | cve | Path Equivalence: 'file.Name' (Internal Dot) leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via write ... |
| Page(s) : 1 ... 763 764 765 766 767 768 769 770 771 772 [773] 774 775 776 777 778 779 780 781 782 783 ... | Result(s) : 300103 |
