| Page(s) : 1 ... 79 80 81 82 83 84 85 86 87 88 [89] 90 91 92 93 94 95 96 97 98 99 ... | Result(s) : 298260 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-06-04 | CVE-2025-31482 | cve | FreshRSS is a self-hosted RSS feed aggregator. A vulnerability in versions prior to 1.26.2 causes a user to be repeatedly logged out after fetching a malicious feed entry, effec... |
| N/A | 2025-06-04 | CVE-2025-32015 | cve | FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, HTML is sanitized improperly inside the `` attribute, which leads to cross-site scripting (XSS) by loadin... |
| N/A | 2025-06-04 | CVE-2025-46011 | cve | Listmonk v4.1.0 (fixed in v5.0.0) is vulnerable to SQL Injection in the QuerySubscribers function which allows attackers to escalate privileges. |
| N/A | 2025-06-04 | CVE-2025-46203 | cve | An issue in Unifiedtransform v2.0 allows a remote attacker to escalate privileges via the /students/edit/{id} endpoint. |
| N/A | 2025-06-04 | CVE-2025-46204 | cve | An issue in Unifiedtransform v2.0 allows a remote attacker to escalate privileges via the /course/edit/{id} endpoint. |
| N/A | 2025-06-04 | CVE-2025-46339 | cve | FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, it's possible to poison feed favicons by adding a given URL as a feed with the proxy set to an attac... |
| N/A | 2025-06-04 | CVE-2025-48888 | cve | Deno is a JavaScript, TypeScript, and WebAssembly runtime. Starting in version 1.41.3 and prior to versions 2.1.13, 2.2.13, and 2.3.2, `deno run --allow-read --deny-read main.ts... |
| N/A | 2025-06-04 | CVE-2025-48934 | cve | Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to versions 2.1.13 and 2.2.13, the `Deno.env.toObject` method ignores any variables listed in the `--deny-env` o... |
| N/A | 2025-06-04 | CVE-2025-48935 | cve | Deno is a JavaScript, TypeScript, and WebAssembly runtime. Starting in version 2.2.0 and prior to versions 2.2.5, it is possible to bypass Deno's permission read/write db p... |
| 8.8 | 2025-06-04 | CVE-2025-5607 | cve | A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function formSetPPTPUserList of the file /goform/setPptpUserList. The ... |
| 8.8 | 2025-06-04 | CVE-2025-5608 | cve | A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the function formsetreboottimer of the file /goform/SetSysAutoRebbotCfg. The manipul... |
| 8.8 | 2025-06-04 | CVE-2025-5609 | cve | A vulnerability classified as critical was found in Tenda AC18 15.03.05.05. Affected by this vulnerability is the function fromadvsetlanip of the file /goform/AdvSetLanip. The m... |
| N/A | 2025-06-04 | CVE-2025-46341 | cve | FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, when the server is using HTTP auth via reverse proxy, it's possible to impersonate any user either v... |
| N/A | 2025-06-04 | CVE-2025-48947 | cve | The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. In Auth0 Next.js SDK versions 4.0.1 through 4.6.0, `__session` cookies set by au... |
| 8.8 | 2025-06-04 | CVE-2025-5610 | cve | A vulnerability, which was classified as critical, has been found in CodeAstro Real Estate Management System 1.0. Affected by this issue is some unknown functionality of the fil... |
| 8.8 | 2025-06-04 | CVE-2025-5611 | cve | A vulnerability, which was classified as critical, was found in CodeAstro Real Estate Management System 1.0. This affects an unknown part of the file /submitpropertyupdate.php. ... |
| 9.8 | 2025-06-04 | CVE-2025-5612 | cve | A vulnerability has been found in PHPGurukul Online Fire Reporting System 1.2 and classified as critical. This vulnerability affects unknown code of the file /reporting.php. The... |
| N/A | 2025-06-04 | CVE-2025-1701 | cve | CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interfa... |
| N/A | 2025-06-04 | CVE-2025-27811 | cve | A local privilege escalation in the razer_elevation_service.exe in Razer Synapse 4 through 4.0.86.2502180127 allows a local attacker to escalate their privileges via a vulnerabl... |
| N/A | 2025-06-04 | CVE-2025-48960 | cve | Weak server key used for TLS encryption. The following products are affected: Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39938. |
| Page(s) : 1 ... 79 80 81 82 83 84 85 86 87 88 [89] 90 91 92 93 94 95 96 97 98 99 ... | Result(s) : 298260 |
