| Page(s) : 1 ... 894 895 896 897 898 899 900 901 902 903 [904] 905 906 907 908 909 910 911 912 913 914 ... | Result(s) : 300446 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.5 | 2025-02-26 | CVE-2025-0731 | cve | An unauthenticated remote attacker can upload a .aspx file instead of a PV system picture through the demo account. The code can only be executed in the security context of the ... |
| 5.4 | 2025-02-26 | CVE-2025-1517 | cve | The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free Elementor Widgets & Elementor Templates) plugin for WordPress is vulnerable to St... |
| N/A | 2025-02-26 | CVE-2025-26698 | cve | Incorrect resource transfer between spheres issue exists in RevoWorks SCVX and RevoWorks Browser. If exploited, malicious files may be downloaded to the system where using the p... |
| 6.1 | 2025-02-26 | CVE-2025-0719 | cve | IBM Cloud Pak for Data 4.0.0 through 4.8.5 and 5.0.0 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript c... |
| N/A | 2025-02-26 | CVE-2025-26925 | cve | Cross-Site Request Forgery (CSRF) vulnerability in Required Admin Menu Manager allows Cross Site Request Forgery.This issue affects Admin Menu Manager: from n/a through 1.0.3. |
| N/A | 2025-02-26 | CVE-2025-0760 | cve | A Credential Disclosure vulnerability exists where an administrator could extract the stored SMTP account credentials due to lack of encryption. |
| N/A | 2025-02-26 | CVE-2025-1091 | cve | A Broken Authorization schema exists where any authenticated user could download IOA script and configuration files if the URL is known. |
| N/A | 2025-02-25 | CVE-2024-30150 | cve | HCL MyCloud is affected by Improper Access Control - an unauthenticated privilege escalation vulnerability which may lead to information disclosure and potential for Server-Side... |
| 6.5 | 2025-02-25 | CVE-2024-36259 | cve | Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information via an oracle-based... |
| 9.8 | 2025-02-25 | CVE-2025-27135 | cve | RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. Versions 0.15.1 and prior are vulnerable to SQL injection. The ExeSQL component extracts the SQL statement... |
| 5.5 | 2025-02-25 | CVE-2024-45417 | cve | Uncontrolled resource consumption in the installer for some Zoom apps for macOS before version 6.1.5 may allow a privileged user to conduct a disclosure of information via local... |
| 8.8 | 2025-02-25 | CVE-2024-45418 | cve | Symlink following in the installer for some Zoom apps for macOS before version 6.1.5 may allow an authenticated user to conduct an escalation of privilege via network access. |
| 8.8 | 2025-02-25 | CVE-2024-45421 | cve | Buffer overflow in some Zoom Apps may allow an authenticated user to conduct an escalation of privilege via network access. |
| 7.5 | 2025-02-25 | CVE-2024-45424 | cve | Business logic error in some Zoom Workplace Apps may allow an unauthenticated user to conduct a disclosure of information via network access. |
| 6.5 | 2025-02-25 | CVE-2024-45425 | cve | Incorrect user management in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access. |
| 6.5 | 2025-02-25 | CVE-2024-45426 | cve | Incorrect ownership assignment in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access. |
| 7.5 | 2025-02-25 | CVE-2025-27110 | cve | Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying tradition... |
| 5.4 | 2025-02-25 | CVE-2025-27139 | cve | Combodo iTop is a web based IT service management tool. Versions prior to 2.7.12, 3.1.2, and 3.2.0 are vulnerable to cross-site scripting when the preferences page is opened. Ve... |
| 8.8 | 2025-02-25 | CVE-2025-27142 | cve | LocalSend is a free, open-source app that allows users to securely share files and messages with nearby devices over their local network without needing an internet connection. ... |
| 4.3 | 2025-02-25 | CVE-2025-27146 | cve | matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command e... |
| Page(s) : 1 ... 894 895 896 897 898 899 900 901 902 903 [904] 905 906 907 908 909 910 911 912 913 914 ... | Result(s) : 300446 |
