| Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... | Result(s) : 297997 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-06-13 | CVE-2025-4231 | cve | A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform actions as the root user. The attacker must have network... |
| N/A | 2025-06-13 | CVE-2025-4232 | cve | An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks GlobalProtect™ app on macOS allows a non administrative user to escalat... |
| 7.5 | 2025-06-13 | CVE-2025-30399 | cve | Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network. |
| 7.1 | 2025-06-13 | CVE-2025-47959 | cve | Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an authorized attacker to execute code over a network. |
| 6.4 | 2025-06-13 | CVE-2025-4584 | cve | The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmeventlist' shortcode in all versions up to, and including,... |
| 6.4 | 2025-06-13 | CVE-2025-4585 | cve | The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmflat' shortcode in all versions up to, and including, 1.2.... |
| 6.4 | 2025-06-13 | CVE-2025-4586 | cve | The IRM Newsroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'irmcalendarview' shortcode in all versions up to, and includi... |
| 6.4 | 2025-06-13 | CVE-2025-5123 | cve | The Contact Us Page – Contact People plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style’ parameter in all versions up to, and including, 3.7.4 due ... |
| 6.4 | 2025-06-13 | CVE-2025-5233 | cve | The Color Palette plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘hex’ parameter in all versions up to, and including, 4.3.2 due to insufficient input... |
| 9.8 | 2025-06-13 | CVE-2025-5288 | cve | The REST API | Custom API Generator For Cross Platform And Import Export In WP plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on th... |
| 8.8 | 2025-06-13 | CVE-2025-5491 | cve | Acer ControlCenter contains Remote Code Execution vulnerability. The program exposes a Windows Named Pipe that uses a custom protocol to invoke internal functions. However, this... |
| 6.4 | 2025-06-13 | CVE-2025-5841 | cve | The ACF Onyx Poll plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘class’ parameter in all versions up to, and including, 1.1.9 due to insufficient inp... |
| 6.1 | 2025-06-13 | CVE-2025-5926 | cve | The Link Shield plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.5.4. This is due to missing or incorrect nonce validatio... |
| 4.3 | 2025-06-13 | CVE-2025-5928 | cve | The WP Sliding Login/Dashboard Panel plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.1. This is due to missing or inco... |
| 4.3 | 2025-06-13 | CVE-2025-5930 | cve | The WP2HTML plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.2. This is due to missing or incorrect nonce validation on... |
| 5.3 | 2025-06-13 | CVE-2025-5938 | cve | The Digital Marketing and Agency Templates Addons for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.1. Thi... |
| 4.4 | 2025-06-13 | CVE-2025-5939 | cve | The Telegram for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.6.1 due to insufficient input sa... |
| 6.4 | 2025-06-13 | CVE-2025-5950 | cve | The IndieBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘kind’ parameter in all versions up to, and including, 0.13.2 due to insufficient input... |
| 7.5 | 2025-06-13 | CVE-2025-5282 | cve | The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the dele... |
| 5.3 | 2025-06-13 | CVE-2025-5815 | cve | The Traffic Monitor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tfcm_maybe_set_bot_flags() function in all v... |
| Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... | Result(s) : 297997 |
