| Page(s) : 1 ... 81 82 83 84 85 86 87 88 89 90 [91] 92 93 94 95 96 97 98 99 100 101 ... | Result(s) : 287478 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-19 | CVE-2025-29926 | cve | XWiki Platform is a generic wiki platform. Prior to 15.10.15, 16.4.6, and 16.10.0, any user can exploit the WikiManager REST API to create a new wiki, where the user could becom... |
| 8.4 | 2025-03-19 | CVE-2024-51459 | cve | IBM InfoSphere Information Server 11.7 could allow a local user to execute privileged commands due to the improper handling of permissions. |
| N/A | 2025-03-19 | CVE-2024-57061 | cve | An issue in Termius Version 9.9.0 through v.9.16.0 allows a physically proximate attacker to execute arbitrary code via the insecure Electron Fuses configuration. |
| 4.3 | 2025-03-19 | CVE-2024-7631 | cve | A flaw was found in the OpenShift Console, an endpoint for plugins to serve resources in multiple languages: /locales/resources.json. This endpoint's lng and ns parameters ... |
| N/A | 2025-03-19 | CVE-2025-27415 | cve | Nuxt is an open-source web development framework for Vue.js. Prior to 3.16.0, by sending a crafted HTTP request to a server behind an CDN, it is possible in some circumstances t... |
| N/A | 2025-03-19 | CVE-2025-27704 | cve | There is a cross-site scripting vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.53. Attackers with system administrator p... |
| N/A | 2025-03-19 | CVE-2025-2476 | cve | Use after free in Lens in Google Chrome prior to 134.0.6998.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security seve... |
| N/A | 2025-03-19 | CVE-2025-2536 | cve | Cross-site scripting (XSS) vulnerability on Liferay Portal 7.4.3.82 through 7.4.3.128, and Liferay DXP 2024.Q3.0, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12, 202... |
| 8.8 | 2025-03-19 | CVE-2024-12920 | cve | The FoodBakery | Delivery Restaurant Directory WordPress Theme theme for WordPress is vulnerable to unauthorized access of data and modification of data due to a missing capabil... |
| 9.8 | 2025-03-19 | CVE-2024-13442 | cve | The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 5.0. This is due to the plugin ... |
| 8.8 | 2025-03-19 | CVE-2024-13933 | cve | The FoodBakery | Delivery Restaurant Directory WordPress Theme theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.7. This is... |
| 4.7 | 2025-03-19 | CVE-2024-45644 | cve | IBM Security ReaQta 3.12 allows a privileged user to upload or transfer files of dangerous types that can be automatically processed within the product's environment. |
| 4.9 | 2025-03-19 | CVE-2025-2511 | cve | The AHAthat Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' parameter in all versions up to, and including, 1.6 due to insufficient ... |
| 9.8 | 2025-03-19 | CVE-2025-2512 | cve | The File Away plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check and missing file type validation in the upload() function in all ver... |
| N/A | 2025-03-19 | CVE-2024-55551 | cve | An issue was discovered in Exasol JDBC driver before 24.2.1 (2024-12-10). Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the proce... |
| N/A | 2025-03-19 | CVE-2024-42176 | cve | HCL MyXalytics is affected by concurrent login vulnerability. A concurrent login vulnerability occurs when simultaneous active sessions are allowed for a single credential allow... |
| N/A | 2025-03-19 | CVE-2025-1472 | cve | Mattermost versions 9.11.x |
| 8.8 | 2025-03-19 | CVE-2024-12295 | cve | The BoomBox Theme Extensions plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.8.0. This is due to the plug... |
| 5.3 | 2025-03-19 | CVE-2025-2290 | cve | The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to Unauthenticated Post Trashing due to a missing capability check on the dele... |
| N/A | 2025-03-19 | CVE-2025-30234 | cve | SmartOS, as used in Triton Data Center and other products, has static host SSH keys in the 60f76fd2-143f-4f57-819b-1ae32684e81b image (a Debian 12 LX zone image from 2024-07-26). |
| Page(s) : 1 ... 81 82 83 84 85 86 87 88 89 90 [91] 92 93 94 95 96 97 98 99 100 101 ... | Result(s) : 287478 |
