| Page(s) : 1 ... 835 836 837 838 839 840 841 842 843 844 [845] 846 847 848 849 850 851 852 853 854 855 ... | Result(s) : 300361 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-02-28 | CVE-2025-1570 | cve | The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to privilege escalation via account takeover in all version... |
| 6.4 | 2025-02-28 | CVE-2025-1662 | cve | The URL Media Uploader plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.0.0 via the 'url_media_uploader_url_upload&... |
| N/A | 2025-02-28 | CVE-2025-22491 | cve | The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software (FRS) application which could lead into execution of arbitrary JavaScript ... |
| N/A | 2025-02-28 | CVE-2025-22492 | cve | The connection string visible to users with access to FRSCore database on Foreseer Reporting Software (FRS) VM, this string can be used for gaining administrative access to the ... |
| 4.3 | 2025-02-28 | CVE-2024-10860 | cve | The NextMove Lite – Thank You Page for WooCommerce plugin for WordPress is vulnerable to unauthorized submission of data due to a missing capability check on the _submit_uninsta... |
| 4.7 | 2025-02-28 | CVE-2024-54173 | cve | IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD reveals potentially sensitive information in trace files that could be read by a local user when webconsole trace is enabled. |
| 6.5 | 2025-02-28 | CVE-2024-56340 | cve | IBM Cognos Analytics 11.2.0 through 11.2.4 FP5 is vulnerable to local file inclusion vulnerability, allowing an attacker to access sensitive files by inserting path traversal pa... |
| 6.5 | 2025-02-28 | CVE-2025-0823 | cve | IBM Cognos Analytics 11.2.0 through 11.2.4 FP5 and 12.0.0 through 12.0.4 could allow a remote attacker to traverse directories on the system. An attacker could send a specially ... |
| 8.8 | 2025-02-28 | CVE-2025-0975 | cve | IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD console could allow an authenticated user to execute code due to improper neutralization of escape characters. |
| 6.5 | 2025-02-28 | CVE-2025-23225 | cve | IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow an authenticated user to cause a denial of service due to the improper handling of invalid headers sent to the queue. |
| 9.8 | 2025-02-28 | CVE-2025-1744 | cve | Out-of-bounds Write vulnerability in radareorg radare2 allows heap-based buffer over-read or buffer overflow.This issue affects radare2: before |
| 7.5 | 2025-02-28 | CVE-2024-13796 | cve | The Post Grid and Gutenberg Blocks – ComboBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.6 via the /wp-jso... |
| 4.3 | 2025-02-28 | CVE-2025-0801 | cve | The RateMyAgent Official plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.0. This is due to missing or incorrect nonce ... |
| 6.1 | 2025-02-28 | CVE-2025-1505 | cve | The Advanced AJAX Product Filters plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'nonce' parameter in all versions up to, and including, ... |
| 5.4 | 2025-02-28 | CVE-2025-1757 | cve | The WordPress Portfolio Builder – Portfolio Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pfhub_portfolio' and '... |
| 8.8 | 2025-02-28 | CVE-2024-12811 | cve | The Traveler theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.1.8 via the 'hotel_alone_slider' shortcode 'style&#... |
| 5.4 | 2025-02-28 | CVE-2025-1681 | cve | The Cardealer theme for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check and missing filename sanitization on the ... |
| 8.8 | 2025-02-28 | CVE-2025-1682 | cve | The Cardealer theme for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.6.4 due to missing capability check on the 'save_settings' ... |
| 8.8 | 2025-02-28 | CVE-2025-1687 | cve | The Cardealer theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.4. This is due to missing nonce validation on the 'updat... |
| N/A | 2025-02-28 | CVE-2025-25477 | cve | A host header injection vulnerability in SysPass 3.2x allows an attacker to load malicious JS files from an arbitrary domain which would be executed in the victim's browser. |
| Page(s) : 1 ... 835 836 837 838 839 840 841 842 843 844 [845] 846 847 848 849 850 851 852 853 854 855 ... | Result(s) : 300361 |
