| Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ... | Result(s) : 283441 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.1 | 2024-07-24 | CVE-2024-22444 | cve | A vulnerability within the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow a remote attacker to conduct a reflected cross-site scripting (XSS) atta... |
| 8.8 | 2024-07-24 | CVE-2024-31970 | cve | AdTran SRG 834-5 HDC17600021F1 devices (with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1) have SSH enabled by default, accessible both over the LAN and the Internet. During a... |
| 8.8 | 2024-07-24 | CVE-2024-36541 | cve | Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token. |
| 9.1 | 2024-07-24 | CVE-2024-40422 | cve | The snapshot_path parameter in the /api/get-browser-snapshot endpoint in stitionai devika v1 is susceptible to a path traversal attack. An attacker can manipulate the snapshot_p... |
| 5.5 | 2024-07-24 | CVE-2024-40575 | cve | An issue in Huawei Technologies opengauss (openGauss 5.0.0 build) v.7.3.0 allows a local attacker to cause a denial of service via the modification of table attributes |
| 7.5 | 2024-07-24 | CVE-2024-7069 | cve | A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects some unknown processing... |
| 6.5 | 2024-07-24 | CVE-2024-7079 | cve | A flaw was found in the Openshift console. The /API/helm/verify endpoint is tasked to fetch and verify the installation of a Helm chart from a URI that is remote HTTP/HTTPS or l... |
| N/A | 2024-07-24 | CVE-2024-36539 | cve | Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token. |
| N/A | 2024-07-24 | CVE-2024-36540 | cve | Insecure permissions in external-secrets v0.9.16 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token. |
| N/A | 2024-07-24 | CVE-2024-41110 | cve | Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allo... |
| N/A | 2024-07-24 | CVE-2024-41662 | cve | VNote is a note-taking platform. A Cross-Site Scripting (XSS) vulnerability has been identified in the Markdown rendering functionality of versions 3.18.1 and prior of the VNote... |
| N/A | 2024-07-24 | CVE-2024-7065 | cve | A vulnerability was found in Spina CMS up to 2.18.0. It has been classified as problematic. Affected is an unknown function of the file /admin/pages/. The manipulation leads to ... |
| 6.4 | 2024-07-24 | CVE-2024-6896 | cve | The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.96.1 d... |
| N/A | 2024-07-24 | CVE-2024-7066 | cve | A vulnerability was found in F-logic DataCube3 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/config_time_s... |
| 5.4 | 2024-07-24 | CVE-2024-3896 | cve | The Photo Gallery, Images, Slider in Rbs Image Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the the Gallery title field in all versions up to, a... |
| 5.4 | 2024-07-24 | CVE-2024-5818 | cve | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored DOM-based Cross-Site Scripting via the plugin's Magazine Grid/Slider widget in all ver... |
| N/A | 2024-07-24 | CVE-2024-40767 | cve | In OpenStack Nova before 27.4.1, 28 before 28.2.1, and 29 before 29.1.1, by supplying a raw format image that is actually a crafted QCOW2 image with a backing file path or VMDK ... |
| N/A | 2024-07-24 | CVE-2024-6094 | cve | The WP ULike WordPress plugin before 4.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site ... |
| 4.3 | 2024-07-24 | CVE-2024-6836 | cve | The Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels, Order Bumps & One Click Upsells plugin for WordPress is vulnerable to... |
| N/A | 2024-07-24 | CVE-2023-32466 | cve | Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A local authenticated malicious user with high privileges could potentially exploi... |
| Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ... | Result(s) : 283441 |
