| Page(s) : 1 ... 791 792 793 794 795 796 797 798 799 800 [801] 802 803 804 805 806 807 808 809 810 811 ... | Result(s) : 300249 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-05 | CVE-2025-27516 | cve | Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls th... |
| N/A | 2025-03-05 | CVE-2025-27508 | cve | Emissary is a P2P based data-driven workflow engine. The ChecksumCalculator class within allows for hashing and checksum generation, but it includes or defaults to algorithms th... |
| N/A | 2025-03-05 | CVE-2024-12799 | cve | Insufficiently Protected Credentials vulnerability in OpenText Identity Manager Advanced Edition on Windows, Linux, 64 bit allows Privilege Abuse. This vulnerability could allow... |
| N/A | 2025-03-05 | CVE-2025-1714 | cve | Lack of Rate Limiting in Sign-up workflow in Perforce Gliffy prior to version 4.14.0-7 on Gliffy online allows attacker to enumerate valid user emails and potentially DOS the se... |
| N/A | 2025-03-05 | CVE-2023-38693 | cve | Lucee Server (or simply Lucee) is a dynamic, Java based, tag and scripting language used for rapid web application development. The Lucee REST endpoint is vulnerable to RCE via ... |
| N/A | 2025-03-05 | CVE-2025-21095 | cve | Path traversal may lead to arbitrary file download. The score without least privilege principle violation is as calculated below. In combination with other issues it may facil... |
| N/A | 2025-03-05 | CVE-2025-22212 | cve | A SQL injection vulnerability in the Convert Forms component versions 1.0.0-1.0.0 - 4.4.9 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL comm... |
| N/A | 2025-03-05 | CVE-2025-23416 | cve | Path traversal may lead to arbitrary file deletion. The score without least privilege principle violation is as calculated below. In combination with other issues it may facil... |
| N/A | 2025-03-05 | CVE-2025-24494 | cve | Path traversal may allow remote code execution using privileged account (requires device admin account, cannot be performed by a regular user). In combination with the 'U... |
| N/A | 2025-03-05 | CVE-2025-24521 | cve | External XML entity injection allows arbitrary download of files. The score without least privilege principle violation is as calculated below. In combination with other issue... |
| N/A | 2025-03-05 | CVE-2025-27411 | cve | REDAXO is a PHP-based CMS. In Redaxo before 5.18.3, the mediapool/media page is vulnerable to arbitrary file upload. This vulnerability is fixed in 5.18.3. |
| N/A | 2025-03-05 | CVE-2025-27412 | cve | REDAXO is a PHP-based CMS. In Redaxo from 5.0.0 through 5.18.2, the rex-api-result parameter is vulnerable to Reflected cross-site scripting (XSS) on the page of AddOns. This vu... |
| N/A | 2025-03-05 | CVE-2025-27497 | cve | OpenDJ is an LDAPv3 compliant directory service. OpenDJ prior to 4.9.3 contains a denial-of-service (DoS) vulnerability that causes the server to become unresponsive to all LDAP... |
| N/A | 2025-03-05 | CVE-2024-11035 | cve | Carbon Black Cloud Windows Sensor, prior to 4.0.3, may be susceptible to an Information Leak vulnerability, which s a type of issue whereby sensitive information may b exposed d... |
| 7.1 | 2025-03-05 | CVE-2025-20206 | cve | A vulnerability in the interprocess communication (IPC) channel of Cisco Secure Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack... |
| 5.4 | 2025-03-05 | CVE-2025-20208 | cve | A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) could allow a low-privileged, remote attacker to conduct a cross-site scriptin... |
| N/A | 2025-03-05 | CVE-2024-53458 | cve | Sysax Multi Server 6.99 is vulnerable to a denial of service (DoS) condition when processing specially crafted SSH packets. |
| 5.3 | 2025-03-05 | CVE-2024-11153 | cve | The Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More plugin for WordPress is vulnerable to Sensitive Information Exp... |
| 9.8 | 2025-03-05 | CVE-2024-11951 | cve | The Homey Login Register plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.0. This is due to the plugin allowing users who are... |
| 9.8 | 2025-03-05 | CVE-2024-12281 | cve | The Homey theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.2. This is due to the plugin allowing users who are registering new... |
| Page(s) : 1 ... 791 792 793 794 795 796 797 798 799 800 [801] 802 803 804 805 806 807 808 809 810 811 ... | Result(s) : 300249 |
