Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ... | Result(s) : 272316 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
N/A | 2024-04-25 | CVE-2023-6596 | cve | An incomplete fix was shipped for the Rapid Reset (CVE-2023-44487/CVE-2023-39325) vulnerability for an OpenShift Containers. |
N/A | 2024-04-25 | CVE-2023-6717 | cve | A flaw was found in the SAML client registration in Keycloak that could allow an administrator to register malicious JavaScript URIs as Assertion Consumer Service POST Binding U... |
N/A | 2024-04-25 | CVE-2023-6787 | cve | A flaw was found in Keycloak that occurs from an error in the re-authentication mechanism within org.keycloak.authentication. This flaw allows hijacking an active Keycloak sessi... |
N/A | 2024-04-25 | CVE-2024-0874 | cve | A flaw was found in coredns. This issue could lead to invalid cache entries returning due to incorrectly implemented caching. |
N/A | 2024-04-25 | CVE-2024-1102 | cve | A vulnerability was found in jberet-core logging. An exception in 'dbProperties' might display user credentials such as the username and password for the database-conn... |
N/A | 2024-04-25 | CVE-2024-1139 | cve | A credentials leak vulnerability was found in the cluster monitoring operator in OCP. This issue may allow a remote attacker who has basic login credentials to check the pod ma... |
N/A | 2024-04-25 | CVE-2024-1657 | cve | A flaw was found in the ansible automation platform. An insecure WebSocket connection was being used in installation from the Ansible rulebook EDA server. An attacker that has a... |
N/A | 2024-04-25 | CVE-2024-1726 | cve | A flaw was discovered in the RESTEasy Reactive implementation in Quarkus. Due to security checks for some JAX-RS endpoints being performed after serialization, more processing r... |
N/A | 2024-04-25 | CVE-2024-25624 | cve | Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. Due to an improper setup of Jinja2 environment, reports ... |
N/A | 2024-04-25 | CVE-2024-28240 | cve | The GLPI Agent is a generic management agent. A vulnerability that only affects GLPI-Agent installed on windows via MSI packaging can allow a local user to cause denial of agent... |
N/A | 2024-04-25 | CVE-2024-28241 | cve | The GLPI Agent is a generic management agent. Prior to version 1.7.2, a local user can modify GLPI-Agent code or used DLLs to modify agent logic and even gain higher privileges.... |
N/A | 2024-04-25 | CVE-2024-29660 | cve | Cross Site Scripting vulnerability in DedeCMS v.5.7 allows a local attacker to execute arbitrary code via a crafted payload to the stepselect_main.php component. |
N/A | 2024-04-25 | CVE-2024-2467 | cve | A timing-based side-channel flaw exists in the perl-Crypt-OpenSSL-RSA package, which could be sufficient to recover plaintext across a network in a Bleichenbacher-style attack. ... |
N/A | 2024-04-25 | CVE-2024-30890 | cve | Cross Site Scripting vulnerability in ED01-CMS v.1.0 allows an attacker to obtain sensitive information via the categories.php component. |
N/A | 2024-04-25 | CVE-2024-31574 | cve | Cross Site Scripting vulnerability in TWCMS v.2.6 allows a local attacker to execute arbitrary code via a crafted script |
N/A | 2024-04-25 | CVE-2024-32236 | cve | An issue in CmsEasy v.7.7 and before allows a remote attacker to obtain sensitive information via the update function in the index.php component. |
N/A | 2024-04-25 | CVE-2024-32358 | cve | An issue in Jpress v.5.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the custom plug-in module function. |
N/A | 2024-04-25 | CVE-2024-32467 | cve | MeterSphere is an open source continuous testing platform. Prior to version 2.10.14-lts, members without space permissions can view member information from other workspaces beyo... |
N/A | 2024-04-25 | CVE-2024-32481 | cve | Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Starting in version 0.3.8 and prior to version 0.4.0b1, when looping over a `range` of the form `ra... |
N/A | 2024-04-25 | CVE-2023-52220 | cve | Missing Authorization vulnerability in MonsterInsights Google Analytics by Monster Insights.This issue affects Google Analytics by Monster Insights: from n/a through 8.21.0. |
Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ... | Result(s) : 272316 |