| Page(s) : 1 ... 84 85 86 87 88 89 90 91 92 93 [94] 95 96 97 98 99 100 101 102 103 104 ... | Result(s) : 287478 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-18 | CVE-2025-24801 | cve | GLPI is a free asset and IT management software package. An authenticated user can upload and force the execution of *.php files located on the GLPI server. This vulnerability i... |
| N/A | 2025-03-18 | CVE-2025-25040 | cve | A vulnerability has been identified in the port ACL functionality of AOS-CX software running on the HPE Aruba Networking CX 9300 Switch Series only and affects: - AOS-CX ... |
| N/A | 2025-03-18 | CVE-2025-25042 | cve | A vulnerability in the AOS-CX REST interface could allow an authenticated remote attacker with low privileges to view sensitive information. Successful exploitation could allow ... |
| N/A | 2025-03-18 | CVE-2025-27080 | cve | Vulnerabilities in the command line interface of AOS-CX could allow an authenticated remote attacker to expose sensitive information. Successful exploitation could allow an atta... |
| N/A | 2025-03-18 | CVE-2025-29790 | cve | Contao is an Open Source CMS. Users can upload SVG files with malicious code, which is then executed in the back end and/or front end. This vulnerability is fixed in Contao 4.13... |
| N/A | 2025-03-18 | CVE-2025-29907 | cve | jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If... |
| N/A | 2025-03-18 | CVE-2025-29930 | cve | imFAQ is an advanced questions and answers management system for ImpressCMS. Prior to 1.0.1, if the $_GET['seoOp'] parameter is manipulated to include malicious input ... |
| N/A | 2025-03-18 | CVE-2025-2489 | cve | Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /U... |
| N/A | 2025-03-18 | CVE-2025-2493 | cve | Path Traversal vulnerability in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to manipulate the ‘id’ parameter of the ‘/softdial/scheduler/load.php... |
| N/A | 2025-03-18 | CVE-2025-2494 | cve | Unrestricted file upload to Softdial Contact Center of Sytel Ltd. This vulnerability could allow an attacker to upload files to the server via the ‘/softdial/phpconsole/upload.p... |
| N/A | 2025-03-18 | CVE-2025-2495 | cve | Stored Cross-Site Scripting (XSS) in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to upload XML files to the server with JavaScript code injected ... |
| N/A | 2025-03-18 | CVE-2023-47539 | cve | An improper access control vulnerability in FortiMail version 7.4.0 configured with RADIUS authentication and remote_wildcard enabled may allow a remote unauthenticated attacker... |
| N/A | 2025-03-18 | CVE-2024-21760 | cve | An improper control of generation of code ('Code Injection') vulnerability [CWE-94] in FortiSOAR Connector FortiSOAR 7.4 all versions, 7.3 all versions, 7.2 all versio... |
| 9.8 | 2025-03-18 | CVE-2024-8997 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Vestel EVC04 Configuration Interface allows SQL Injection.This is... |
| N/A | 2025-03-18 | CVE-2025-25500 | cve | An issue in CosmWasm prior to v2.2.0 allows attackers to bypass capability restrictions in blockchains by exploiting a lack of runtime capability validation. This allows attacke... |
| N/A | 2025-03-18 | CVE-2025-2449 | cve | NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected i... |
| N/A | 2025-03-18 | CVE-2025-2450 | cve | NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected i... |
| 2.4 | 2025-03-18 | CVE-2025-2490 | cve | A vulnerability was found in Dromara ujcms 9.7.5. It has been rated as problematic. Affected by this issue is the function uploadZip/upload of the file /main/java/com/ujcms/cms/... |
| N/A | 2025-03-18 | CVE-2025-30106 | cve | On IROAD v9 devices, the dashcam has hardcoded default credentials ("qwertyuiop") that cannot be changed by the user. This allows an attacker within Wi-Fi range to connect to th... |
| N/A | 2025-03-18 | CVE-2024-44313 | cve | TastyIgniter 3.7.6 contains an Incorrect Access Control vulnerability in the invoice() function within Orders.php which allows unauthorized users to access and generate invoices... |
| Page(s) : 1 ... 84 85 86 87 88 89 90 91 92 93 [94] 95 96 97 98 99 100 101 102 103 104 ... | Result(s) : 287478 |
