| Page(s) : 1 ... 917 918 919 920 921 922 923 924 925 926 [927] 928 929 930 931 932 933 934 935 936 937 ... | Result(s) : 300504 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-21 | CVE-2024-38657 | cve | External control of a file name in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with adm... |
| 6.5 | 2025-02-21 | CVE-2024-13235 | cve | The Pinpoint Booking System – #1 WordPress Booking Plugin plugin for WordPress is vulnerable to SQL Injection via the 'language' parameter in all versions up to, and i... |
| 5.4 | 2025-02-21 | CVE-2024-13379 | cve | The C9 Admin Dashboard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.3.5 due to insufficient inp... |
| 5.4 | 2025-02-21 | CVE-2024-13388 | cve | The TCBD Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tcbdtooltip_text' shortcode in all versions up to, and includ... |
| 5.3 | 2025-02-21 | CVE-2024-13537 | cve | The C9 Blocks plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.7.7. This is due the plugin containing a publicly accessible com... |
| 5.4 | 2025-02-21 | CVE-2024-13672 | cve | The Mini Course Generator | Embed mini-courses and interactive content plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mcg' sh... |
| 5.4 | 2025-02-21 | CVE-2024-13751 | cve | The 3D Photo Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'des[]' parameter in all versions up to, and including, 1.3 due to insuf... |
| 7.5 | 2025-02-21 | CVE-2024-13818 | cve | The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction plugin for WordPress is vulnerable to ... |
| 4.3 | 2025-02-21 | CVE-2024-13883 | cve | The WPUpper Share Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.51. This is due to missing or incorrect nonce ... |
| 5.4 | 2025-02-21 | CVE-2025-1406 | cve | The Newpost Catch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's npc shortcode in all versions up to, and including, 1.3.19 due to insuf... |
| 5.4 | 2025-02-21 | CVE-2025-1407 | cve | The AMO Team Showcase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's amoteam_skills shortcode in all versions up to, and including, 1.1.... |
| N/A | 2025-02-21 | CVE-2025-27100 | cve | lakeFS is an open-source tool that transforms your object storage into a Git-like repository. In affected versions an authenticated user can crash lakeFS by exhausting server me... |
| N/A | 2025-02-20 | CVE-2024-54756 | cve | A remote code execution (RCE) vulnerability in the ZScript function of ZDoom Team GZDoom v4.13.1 allows attackers to execute arbitrary code via supplying a crafted PK3 file cont... |
| N/A | 2025-02-20 | CVE-2024-7131 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| N/A | 2025-02-20 | CVE-2025-22973 | cve | An issue in QiboSoft QiboCMS X1.0 allows a remote attacker to obtain sensitive information via the http_curl() function in the '/application/common. php' file that dir... |
| N/A | 2025-02-20 | CVE-2025-25662 | cve | Tenda O4 V3.0 V1.0.0.10(2936) is vulnerable to Buffer Overflow in the function SafeSetMacFilter of the file /goform/setMacFilterList via the argument remark/type/time. |
| 9.8 | 2025-02-20 | CVE-2025-25663 | cve | A vulnerability was found in Tenda AC8V4 V16.03.34.06. Affected is the function SUB_0046AC38 of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto lea... |
| 9.8 | 2025-02-20 | CVE-2025-25664 | cve | Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the shareSpeed parameter in the sub_49E098 function. |
| 9.8 | 2025-02-20 | CVE-2025-25667 | cve | Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the urls parameter in the function get_parentControl_list_Info. |
| 9.8 | 2025-02-20 | CVE-2025-25668 | cve | Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the shareSpeed parameter in the sub_47D878 function. |
| Page(s) : 1 ... 917 918 919 920 921 922 923 924 925 926 [927] 928 929 930 931 932 933 934 935 936 937 ... | Result(s) : 300504 |
