| Page(s) : 1 ... 833 834 835 836 837 838 839 840 841 842 [843] 844 845 846 847 848 849 850 851 852 853 ... | Result(s) : 300361 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-28 | CVE-2025-24316 | cve | The Dario Health Internet-based server infrastructure is vulnerable due to exposure of development environment details, which could lead to unsafe functionality. |
| N/A | 2025-02-28 | CVE-2025-24318 | cve | Cookie policy is observable via built-in browser tools. In the presence of XSS, this could lead to full session compromise. |
| N/A | 2025-02-28 | CVE-2025-24843 | cve | Insecure file retrieval process that facilitates potential for file manipulation to affect product stability and confidentiality, integrity, authenticity, and attestation of sto... |
| N/A | 2025-02-28 | CVE-2025-24849 | cve | Lack of encryption in transit for cloud infrastructure facilitating potential for sensitive data manipulation or exposure. |
| N/A | 2025-02-28 | CVE-2025-25430 | cve | Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the configname parameter on the /cbi_addcert.htm page. |
| N/A | 2025-02-28 | CVE-2025-25431 | cve | Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the The ssid key of wifi_data parameter on the /captive_portal.htm page. |
| N/A | 2025-02-28 | CVE-2025-27408 | cve | Manifest offers users a one-file micro back end. Prior to version 4.9.2, Manifest employs a weak password hashing implementation that uses SHA3 without a salt. This exposes user... |
| N/A | 2025-02-28 | CVE-2025-1300 | cve | CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. The CodeChecker web server contains an open redirect vul... |
| 6.1 | 2025-02-28 | CVE-2025-1319 | cve | The Site Mailer – SMTP Replacement, Email API Deliverability & Email Log plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, ... |
| N/A | 2025-02-28 | CVE-2025-22270 | cve | An attacker with access to the Administration panel, specifically the "Role Management" tab, can inject code by adding a new role in the "name" field. It should be noted, howeve... |
| N/A | 2025-02-28 | CVE-2025-22271 | cve | The application or its infrastructure allows for IP address spoofing by providing its own value in the "X-Forwarded-For" header. Thus, the action logging mechanism in the applic... |
| N/A | 2025-02-28 | CVE-2025-22272 | cve | In the "/EPMUI/ModalDlgHandler.ashx?value=showReadonlyDlg" endpoint, it is possible to inject code in the "modalDlgMsgInternal" parameter via POST, which is then executed in the... |
| N/A | 2025-02-28 | CVE-2025-22273 | cve | Application does not limit the number or frequency of user interactions, such as the number of incoming requests. At the "/EPMUI/VfManager.asmx/ChangePassword" endpoint it is po... |
| N/A | 2025-02-28 | CVE-2025-22274 | cve | It is possible to inject HTML code into the page content using the "content" field in the "Application definition" page. This issue affects CyberArk Endpoint Privilege Manager... |
| 6.1 | 2025-02-28 | CVE-2025-1746 | cve | Cross-Site Scripting vulnerability in OpenCart versions prior to 4.1.0. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending ... |
| 4.7 | 2025-02-28 | CVE-2025-1747 | cve | HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify the HTML of the victim's browser by sending a ma... |
| 4.7 | 2025-02-28 | CVE-2025-1748 | cve | HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify the HTML of the victim's browser by sending a ma... |
| 4.7 | 2025-02-28 | CVE-2025-1749 | cve | HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify the HTML of the victim's browser by sending a ma... |
| N/A | 2025-02-28 | CVE-2025-1776 | cve | Cross-Site Scripting (XSS) vulnerability in Soteshop, versions prior to 8.3.4, which could allow remote attackers to execute arbitrary code via the ‘query’ parameter in /app-goo... |
| 6.4 | 2025-02-28 | CVE-2024-12820 | cve | The MK Google Directions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'MKGD' shortcode in all versions up to, and including,... |
| Page(s) : 1 ... 833 834 835 836 837 838 839 840 841 842 [843] 844 845 846 847 848 849 850 851 852 853 ... | Result(s) : 300361 |
