| Page(s) : 1 ... 921 922 923 924 925 926 927 928 929 930 [931] 932 933 934 935 936 937 938 939 940 941 ... | Result(s) : 326353 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-25 | CVE-2025-26965 | cve | Authorization Bypass Through User-Controlled Key vulnerability in ameliabooking Amelia allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affect... |
| N/A | 2025-02-25 | CVE-2025-26966 | cve | Authentication Bypass Using an Alternate Path or Channel vulnerability in Aldo Latino PrivateContent. This issue affects PrivateContent: from n/a through 8.11.5. |
| 9.8 | 2025-02-25 | CVE-2025-26971 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ays-pro Poll Maker allows Blind SQL Injection. This issue affects... |
| N/A | 2025-02-25 | CVE-2025-26974 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPExperts.io WP Multi Store Locator allows Blind SQL Injection. T... |
| N/A | 2025-02-25 | CVE-2025-26975 | cve | Missing Authorization vulnerability in WP Chill Strong Testimonials allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Strong Testimonials: from... |
| 7.2 | 2025-02-25 | CVE-2025-26977 | cve | Authorization Bypass Through User-Controlled Key vulnerability in Ninja Team Filebird allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects... |
| N/A | 2025-02-25 | CVE-2025-26979 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FunnelKit Funnel Builder by FunnelKit allows P... |
| N/A | 2025-02-25 | CVE-2025-26980 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wired Impact Wired Impact Volunteer Management allows Stored XSS.... |
| N/A | 2025-02-25 | CVE-2025-26981 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in accessiBe Web Accessibility By accessiBe allows Reflected XSS. Th... |
| N/A | 2025-02-25 | CVE-2025-26983 | cve | Missing Authorization vulnerability in WPZOOM Recipe Card Blocks for Gutenberg & Elementor allows Exploiting Incorrectly Configured Access Control Security Levels. This issue af... |
| N/A | 2025-02-25 | CVE-2025-26985 | cve | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Majestic Support Majestic Support allows PHP L... |
| 6.1 | 2025-02-25 | CVE-2025-26987 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Shabti Kaplan Frontend Admin by DynamiApps allows Reflected XSS. ... |
| N/A | 2025-02-25 | CVE-2025-26991 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ollybach WPPizza allows Reflected XSS. This issue affects WPPizza... |
| N/A | 2025-02-25 | CVE-2025-26993 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vito Peleg Atarim allows Reflected XSS. This issue affects Atarim... |
| N/A | 2025-02-25 | CVE-2025-26995 | cve | Missing Authorization vulnerability in Anton Vanyukov Market Exporter allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Market Exporter... |
| N/A | 2025-02-25 | CVE-2025-27000 | cve | Missing Authorization vulnerability in George Pattichis Simple Photo Feed allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Simple Phot... |
| 6.1 | 2025-02-25 | CVE-2024-11955 | cve | A vulnerability was found in GLPI up to 10.0.17. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php. The mani... |
| 6.5 | 2025-02-25 | CVE-2025-21626 | cve | GLPI is a free asset and IT management software package. Starting in version 0.71 and prior to version 10.0.18, an anonymous user can fetch sensitive information from the `statu... |
| 6.1 | 2025-02-25 | CVE-2025-21627 | cve | GLPI is a free asset and IT management software package. In versions prior to 10.0.18, a malicious link can be crafted to perform a reflected XSS attack on the search page. If t... |
| 4.3 | 2025-02-25 | CVE-2025-23024 | cve | GLPI is a free asset and IT management software package. Starting in version 0.72 and prior to version 10.0.18, an anonymous user can disable all the active plugins. Version 10.... |
| Page(s) : 1 ... 921 922 923 924 925 926 927 928 929 930 [931] 932 933 934 935 936 937 938 939 940 941 ... | Result(s) : 326353 |
