| Page(s) : 1 ... 939 940 941 942 943 944 945 946 947 948 [949] 950 951 952 953 954 955 956 957 958 959 ... | Result(s) : 300527 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-02-18 | CVE-2024-13725 | cve | The Keap Official Opt-in Forms plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.0.1 via the service parameter. This makes it po... |
| 4.8 | 2025-02-18 | CVE-2024-13848 | cve | The Reaction Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.1.6 due to insufficient input s... |
| 8.8 | 2025-02-18 | CVE-2024-13852 | cve | The Option Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.0. This is due to missing nonce validation on the plugin_page() function. This ma... |
| 4.3 | 2025-02-18 | CVE-2025-0796 | cve | The Mortgage Lead Capture System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 8.2.10. This is due to missing or incorre... |
| 5.4 | 2025-02-18 | CVE-2025-0805 | cve | The Mortgage Calculator / Loan Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mlcalc' shortcode in all versions up... |
| N/A | 2025-02-18 | CVE-2021-46686 | cve | Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in acmailer CGI ver.4.0.3 and earlier and acmailer DB ver.1.1.5... |
| N/A | 2025-02-18 | CVE-2025-20075 | cve | Server-side request forgery (SSRF) vulnerability exists in FileMegane versions above 3.0.0.0 prior to 3.4.0.0. Executing arbitrary backend Web API requests could potentially lea... |
| N/A | 2025-02-18 | CVE-2025-25055 | cve | Authentication bypass by spoofing issue exists in FileMegane versions above 1.0.0.0 prior to 3.4.0.0, which may lead to user impersonation. If exploited, restricted file content... |
| N/A | 2025-02-17 | CVE-2024-13837 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been re... |
| N/A | 2025-02-17 | CVE-2021-30369 | cve | Rejected reason: Was determined not a vulnerability. |
| N/A | 2025-02-17 | CVE-2024-25066 | cve | RSA Authentication Manager before 8.7 SP2 Patch 1 allows XML External Entity (XXE) attacks via a license file, resulting in attacker-controlled files being stored on the product... |
| 5.5 | 2025-02-17 | CVE-2024-13879 | cve | The Stream plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.0.2 due to insufficient validation on the webhook feature. T... |
| 3.5 | 2025-02-17 | CVE-2025-1392 | cve | A vulnerability has been found in D-Link DIR-816 1.01TO and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /cgi-bin/webproc?ge... |
| N/A | 2025-02-17 | CVE-2025-0714 | cve | The vulnerability exists in the password storage of Mobateks MobaXterm in versions below 25.0. MobaXTerm uses an initialisation vector (IV) consisting only of zero bytes and a m... |
| N/A | 2025-02-17 | CVE-2025-23840 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webjema WP-NOTCAPTCHA allows Reflected XSS. This issue affects WP... |
| N/A | 2025-02-17 | CVE-2025-23845 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ERA404 ImageMeta allows Reflected XSS. This issue affects ImageMe... |
| N/A | 2025-02-17 | CVE-2025-26754 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Timeline Block allows Stored XSS. This issue affects Tim... |
| N/A | 2025-02-17 | CVE-2025-26758 | cve | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in RebelCode Spotlight Social Media Feeds allows Retrieve Embedded Sensitive Data. This ... |
| N/A | 2025-02-17 | CVE-2025-26769 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Webilia Inc. Vertex Addons for Elementor allows Stored XSS. This ... |
| N/A | 2025-02-17 | CVE-2025-26770 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Joe Waymark allows Stored XSS. This issue affects Waymark: from n... |
| Page(s) : 1 ... 939 940 941 942 943 944 945 946 947 948 [949] 950 951 952 953 954 955 956 957 958 959 ... | Result(s) : 300527 |
