| Page(s) : 1 ... 948 949 950 951 952 953 954 955 956 957 [958] 959 960 961 962 963 964 965 966 967 968 ... | Result(s) : 326621 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-21 | CVE-2025-26014 | cve | A Remote Code Execution (RCE) vulnerability in Loggrove v.1.0 allows a remote attacker to execute arbitrary code via the path parameter. |
| N/A | 2025-02-21 | CVE-2024-55156 | cve | An XML External Entity (XXE) vulnerability in the deserializeArgs() method of Java SDK for CloudEvents v4.0.1 allows attackers to access sensitive information via supplying a cr... |
| N/A | 2025-02-21 | CVE-2024-55159 | cve | GFast between v2 to v3.2 was discovered to contain a SQL injection vulnerability via the SortName parameter at /system/loginLog/list. |
| N/A | 2025-02-21 | CVE-2024-57176 | cve | An issue in the shiroFilter function of White-Jotter project v0.2.2 allows attackers to execute a directory traversal and access sensitive endpoints via a crafted URL. |
| N/A | 2025-02-21 | CVE-2025-25765 | cve | MRCMS v3.1.2 was discovered to contain an arbitrary file write vulnerability via the component /file/save.do. |
| N/A | 2025-02-21 | CVE-2025-25766 | cve | An arbitrary file upload vulnerability in the component /file/savefile.do of MRCMS v3.1.2 allows attackers to execute arbitrary code via uploading a crafted .jsp file. |
| N/A | 2025-02-21 | CVE-2025-25875 | cve | A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /message.php. The attack can use SQL injection to obtain ... |
| N/A | 2025-02-21 | CVE-2025-25876 | cve | A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /delete.php. The attack can use SQL injection to obtain s... |
| N/A | 2025-02-21 | CVE-2025-25877 | cve | A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain se... |
| N/A | 2025-02-21 | CVE-2025-25878 | cve | A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sens... |
| 5.4 | 2025-02-21 | CVE-2024-13455 | cve | The igumbi Online Booking plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'igumbi_calendar' shortcode in all versions up to, an... |
| 6.5 | 2025-02-21 | CVE-2024-13713 | cve | The WPExperts Square For GiveWP plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter in all versions up to, and including, 1.3.1 due to insuffi... |
| 4.9 | 2025-02-21 | CVE-2024-13846 | cve | The Indeed Ultimate Learning Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’ parameter in all versions up to, and including, 3.9 due to insu... |
| 7.2 | 2025-02-21 | CVE-2024-13900 | cve | The Head, Footer and Post Injections plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 3.3.0. This makes it possible for authenticat... |
| N/A | 2025-02-21 | CVE-2024-9150 | cve | Report generation functionality in Wyn Enterprise allows for code inclusion, but not sufficiently limits what code might be included. An attacker is able use a low privileges ac... |
| 5.3 | 2025-02-21 | CVE-2025-1402 | cve | The Event Tickets and Registration plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'ajax_ticket_delete' functi... |
| 5.4 | 2025-02-21 | CVE-2025-1489 | cve | The WP-Appbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's appbox shortcode in all versions up to, and including, 4.5.4 due to insuffi... |
| 7.3 | 2025-02-21 | CVE-2025-1535 | cve | A vulnerability was found in Baiyi Cloud Asset Management System 8.142.100.161. It has been classified as critical. This affects an unknown part of the file /wuser/admin.ticket.... |
| N/A | 2025-02-21 | CVE-2025-26794 | cve | Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection. |
| N/A | 2025-02-21 | CVE-2020-6158 | cve | Opera Mini for Android before version 52.2 is vulnerable to an address bar spoofing attack. The vulnerability allows a malicious page to trick the browser into showing an addres... |
| Page(s) : 1 ... 948 949 950 951 952 953 954 955 956 957 [958] 959 960 961 962 963 964 965 966 967 968 ... | Result(s) : 326621 |
