| Page(s) : 1 ... 946 947 948 949 950 951 952 953 954 955 [956] 957 958 959 960 961 962 963 964 965 966 ... | Result(s) : 326575 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-21 | CVE-2025-25875 | cve | A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /message.php. The attack can use SQL injection to obtain ... |
| N/A | 2025-02-21 | CVE-2025-25876 | cve | A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /delete.php. The attack can use SQL injection to obtain s... |
| N/A | 2025-02-21 | CVE-2025-25877 | cve | A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain se... |
| N/A | 2025-02-21 | CVE-2025-25878 | cve | A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sens... |
| 5.4 | 2025-02-21 | CVE-2024-13455 | cve | The igumbi Online Booking plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'igumbi_calendar' shortcode in all versions up to, an... |
| 6.5 | 2025-02-21 | CVE-2024-13713 | cve | The WPExperts Square For GiveWP plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter in all versions up to, and including, 1.3.1 due to insuffi... |
| 4.9 | 2025-02-21 | CVE-2024-13846 | cve | The Indeed Ultimate Learning Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’ parameter in all versions up to, and including, 3.9 due to insu... |
| 7.2 | 2025-02-21 | CVE-2024-13900 | cve | The Head, Footer and Post Injections plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 3.3.0. This makes it possible for authenticat... |
| N/A | 2025-02-21 | CVE-2024-9150 | cve | Report generation functionality in Wyn Enterprise allows for code inclusion, but not sufficiently limits what code might be included. An attacker is able use a low privileges ac... |
| 5.3 | 2025-02-21 | CVE-2025-1402 | cve | The Event Tickets and Registration plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'ajax_ticket_delete' functi... |
| 5.4 | 2025-02-21 | CVE-2025-1489 | cve | The WP-Appbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's appbox shortcode in all versions up to, and including, 4.5.4 due to insuffi... |
| 7.3 | 2025-02-21 | CVE-2025-1535 | cve | A vulnerability was found in Baiyi Cloud Asset Management System 8.142.100.161. It has been classified as critical. This affects an unknown part of the file /wuser/admin.ticket.... |
| N/A | 2025-02-21 | CVE-2025-26794 | cve | Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection. |
| N/A | 2025-02-21 | CVE-2020-6158 | cve | Opera Mini for Android before version 52.2 is vulnerable to an address bar spoofing attack. The vulnerability allows a malicious page to trick the browser into showing an addres... |
| 5.4 | 2025-02-21 | CVE-2024-10222 | cve | The SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.5.10 due to insufficient input san... |
| 7.5 | 2025-02-21 | CVE-2024-11260 | cve | The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to time-based SQL Injection via the active_status parameter in all versions up to,... |
| N/A | 2025-02-21 | CVE-2024-13314 | cve | The Carousel, Slider, Gallery by WP Carousel WordPress plugin before 2.7.4 does not sanitise and escape some of its settings, which could allow high privilege users such as adm... |
| N/A | 2025-02-21 | CVE-2024-13585 | cve | The Ajax Search Lite WordPress plugin before 4.12.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cr... |
| N/A | 2025-02-21 | CVE-2025-0726 | cve | In NetX HTTP server functionality of Eclipse ThreadX NetX Duo before version 6.4.2, an attacker can cause a denial of service by specially crafted packets. The core issue is m... |
| N/A | 2025-02-21 | CVE-2025-0727 | cve | In NetX HTTP server functionality of Eclipse ThreadX NetX Duo before version 6.4.2, an attacker can cause an integer underflow and a subsequent denial of service by writing a ... |
| Page(s) : 1 ... 946 947 948 949 950 951 952 953 954 955 [956] 957 958 959 960 961 962 963 964 965 966 ... | Result(s) : 326575 |
