| Page(s) : 1 ... 936 937 938 939 940 941 942 943 944 945 [946] 947 948 949 950 951 952 953 954 955 956 ... | Result(s) : 300527 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.8 | 2025-02-18 | CVE-2025-1269 | cve | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HAVELSAN Liman MYS allows Cross-Site Flashing.This issue affects Liman MYS: before 2.1.1 - 1010. |
| N/A | 2025-02-18 | CVE-2025-1414 | cve | Memory safety bugs present in Firefox 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited... |
| 8.8 | 2025-02-18 | CVE-2024-13315 | cve | The Shopwarden – Automated WooCommerce monitoring & testing plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.11. This i... |
| 4.3 | 2025-02-18 | CVE-2024-13438 | cve | The SpeedSize Image & Video AI-Optimizer plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.1. This is due to missing or ... |
| 9.8 | 2025-02-18 | CVE-2024-13556 | cve | The Affiliate Links: WordPress Plugin for Link Cloaking and Link Management plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.0.... |
| N/A | 2025-02-18 | CVE-2024-45320 | cve | Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint C... |
| 5.4 | 2025-02-18 | CVE-2024-13523 | cve | The MemorialDay plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.4. This is due to missing or incorrect nonce validatio... |
| N/A | 2025-02-18 | CVE-2024-57963 | cve | Insecure Loading of Dynamic Link Libraries have been discovered in USB-CONVERTERCABLE DRIVER, which could allow local attackers to potentially disclose information or execute ar... |
| N/A | 2025-02-18 | CVE-2024-57964 | cve | Insecure Loading of Dynamic Link Libraries have been discovered in HVAC Energy Saving Program, which could allow local attackers to potentially disclose information or execute a... |
| 6.1 | 2025-02-18 | CVE-2024-11376 | cve | The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions plugin for WordPress is vulnerable to Reflected Cross-Site Scri... |
| 5.4 | 2025-02-18 | CVE-2024-11895 | cve | The Online Payments – Get Paid with PayPal, Square & Stripe plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up... |
| 5.4 | 2025-02-18 | CVE-2024-13465 | cve | The aBlocks – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Table Of Content" Block, specifically in the "markerView" att... |
| 5.4 | 2025-02-18 | CVE-2024-13575 | cve | The Web Stories Enhancer – Level Up Your Web Stories plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'web_stories_enhancer' sho... |
| 6.1 | 2025-02-18 | CVE-2024-13704 | cve | The Super Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'st_user_title' parameter in all versions up to, and including, 4.0.1 ... |
| 4.3 | 2025-02-18 | CVE-2024-13795 | cve | The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.12.27. This is due to mi... |
| N/A | 2025-02-18 | CVE-2025-0422 | cve | An authenticated user in the "bestinformed Web" application can execute commands on the underlying server running the application. (Remote Code Execution) For this, the user mus... |
| N/A | 2025-02-18 | CVE-2025-0423 | cve | In the "bestinformed Web" application, some user input was not properly sanitized. This leads to multiple unauthenticated stored cross-site scripting vulnerabilities. An unauthe... |
| N/A | 2025-02-18 | CVE-2025-0424 | cve | In the "bestinformed Web" application, some user input was not properly sanitized. This leads to multiple authenticated stored cross-site scripting vulnerabilities. An authentic... |
| N/A | 2025-02-18 | CVE-2025-0425 | cve | Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of the "bestinformed Server" to which this client connects. T... |
| 6.1 | 2025-02-18 | CVE-2025-0864 | cve | The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'shortcodes_set�... |
| Page(s) : 1 ... 936 937 938 939 940 941 942 943 944 945 [946] 947 948 949 950 951 952 953 954 955 956 ... | Result(s) : 300527 |
