| Page(s) : 1 ... 828 829 830 831 832 833 834 835 836 837 [838] 839 840 841 842 843 844 845 846 847 848 ... | Result(s) : 300303 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-01 | CVE-2025-23118 | cve | An Improper Certificate Validation vulnerability could allow an authenticated malicious actor with access to UniFi Protect Cameras adjacent network to make unsupported changes t... |
| N/A | 2025-03-01 | CVE-2025-23119 | cve | An Improper Neutralization of Escape Sequences vulnerability could allow an Authentication Bypass with a Remote Code Execution (RCE) by a malicious actor with access to UniFi Pr... |
| 4.3 | 2025-03-01 | CVE-2024-13358 | cve | The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on... |
| 4.3 | 2025-03-01 | CVE-2025-1780 | cve | The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on... |
| 4.3 | 2025-03-01 | CVE-2024-13518 | cve | The Simple:Press Forum plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.10.11. This is due to missing or incorrect nonce ... |
| 6.4 | 2025-03-01 | CVE-2024-13559 | cve | The TemplatesNext ToolKit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tx_woo_wishlist_table' shortcode in all versions up ... |
| 7.5 | 2025-03-01 | CVE-2024-13568 | cve | The Fluent Support – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.5 v... |
| 6.5 | 2025-03-01 | CVE-2024-13746 | cve | The Booking Calendar and Notification plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to missing capability checks on the wpcb_all_... |
| 6.5 | 2025-03-01 | CVE-2024-13750 | cve | The Multilevel Referral Affiliate Plugin for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter in all versions up to, and inc... |
| 6.1 | 2025-03-01 | CVE-2024-9212 | cve | The SKU Generator for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in... |
| 6.1 | 2025-03-01 | CVE-2024-9217 | cve | The Currency Switcher for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the UR... |
| 6.4 | 2025-03-01 | CVE-2025-0820 | cve | The Clicface Trombi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nom’ parameter in all versions up to, and including, 2.08 due to insufficient inpu... |
| N/A | 2025-02-28 | CVE-2025-25379 | cve | Cross Site Request Forgery vulnerability in 07FLYCMS v.1.3.9 allows a remote attacker to execute arbitrary code via the id parameter of the del.html component. |
| N/A | 2025-02-28 | CVE-2025-25476 | cve | A stored cross-site scripting (XSS) vulnerability in SysPass 3.2.x allows a malicious user with elevated privileges to execute arbitrary Javascript code by specifying a maliciou... |
| N/A | 2025-02-28 | CVE-2025-25478 | cve | The account file upload functionality in Syspass 3.2.x fails to properly handle special characters in filenames. This mismanagement leads to the disclosure of the web applicatio... |
| N/A | 2025-02-28 | CVE-2025-25723 | cve | Buffer Overflow vulnerability in GPAC version 2.5 allows a local attacker to execute arbitrary code. |
| 9.1 | 2025-02-28 | CVE-2025-0159 | cve | IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0 through 8.6.0.5, 8.6.1.0, 8.6.2.0 ... |
| 8.1 | 2025-02-28 | CVE-2025-0160 | cve | IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0 through 8.6.0.5, 8.6.1.0, 8.6.2.0 ... |
| N/A | 2025-02-28 | CVE-2025-1795 | cve | During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expecte... |
| N/A | 2025-02-28 | CVE-2025-25428 | cve | TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root. |
| Page(s) : 1 ... 828 829 830 831 832 833 834 835 836 837 [838] 839 840 841 842 843 844 845 846 847 848 ... | Result(s) : 300303 |
