| Page(s) : 1 ... 949 950 951 952 953 954 955 956 957 958 [959] 960 961 962 963 964 965 966 967 968 969 ... | Result(s) : 326621 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.4 | 2025-02-21 | CVE-2024-10222 | cve | The SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.5.10 due to insufficient input san... |
| 7.5 | 2025-02-21 | CVE-2024-11260 | cve | The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to time-based SQL Injection via the active_status parameter in all versions up to,... |
| N/A | 2025-02-21 | CVE-2024-13314 | cve | The Carousel, Slider, Gallery by WP Carousel WordPress plugin before 2.7.4 does not sanitise and escape some of its settings, which could allow high privilege users such as adm... |
| N/A | 2025-02-21 | CVE-2024-13585 | cve | The Ajax Search Lite WordPress plugin before 4.12.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cr... |
| N/A | 2025-02-21 | CVE-2025-0726 | cve | In NetX HTTP server functionality of Eclipse ThreadX NetX Duo before version 6.4.2, an attacker can cause a denial of service by specially crafted packets. The core issue is m... |
| N/A | 2025-02-21 | CVE-2025-0727 | cve | In NetX HTTP server functionality of Eclipse ThreadX NetX Duo before version 6.4.2, an attacker can cause an integer underflow and a subsequent denial of service by writing a ... |
| N/A | 2025-02-21 | CVE-2025-0728 | cve | In NetX HTTP server functionality of Eclipse ThreadX NetX Duo before version 6.4.2, an attacker can cause an integer underflow and a subsequent denial of service by writing a ... |
| 5.4 | 2025-02-21 | CVE-2025-1410 | cve | The Events Calendar Made Simple – Pie Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's piecal shortcode in all versions up to, an... |
| 6.5 | 2025-02-21 | CVE-2024-12276 | cve | The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to second-order SQL Injecti... |
| 5.4 | 2025-02-21 | CVE-2024-12452 | cve | The Ziggeo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ziggeo_event' shortcode in all versions up to, and including, 3.1 d... |
| 8.8 | 2025-02-21 | CVE-2024-13353 | cve | The Responsive Addons for Elementor – Free Elementor Addons Plugin and Elementor Templates plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and ... |
| 5.4 | 2025-02-21 | CVE-2024-13461 | cve | The Autoship Cloud for WooCommerce Subscription Products plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'autoship-create-scheduled-... |
| 5.4 | 2025-02-21 | CVE-2024-13648 | cve | The Maps for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'MapOnePoint' shortcode in all versions up to, and including, 1... |
| 5.5 | 2025-02-21 | CVE-2025-1470 | cve | In Eclipse OMR, from the initial contribution to version 0.4.0, some OMR internal port library and utilities consumers of z/OS atoe functions do not check their return values fo... |
| 7.8 | 2025-02-21 | CVE-2025-1471 | cve | In Eclipse OMR versions 0.2.0 to 0.4.0, some of the z/OS atoe print functions use a constant length buffer for string conversion. If the input format string and arguments are la... |
| N/A | 2025-02-21 | CVE-2025-1001 | cve | Medixant RadiAnt DICOM Viewer is vulnerable due to failure of the update mechanism to verify the update server's certificate which could allow an attacker to alter network ... |
| N/A | 2025-02-21 | CVE-2024-38657 | cve | External control of a file name in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with adm... |
| 6.5 | 2025-02-21 | CVE-2024-13235 | cve | The Pinpoint Booking System – #1 WordPress Booking Plugin plugin for WordPress is vulnerable to SQL Injection via the 'language' parameter in all versions up to, and i... |
| 5.4 | 2025-02-21 | CVE-2024-13379 | cve | The C9 Admin Dashboard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.3.5 due to insufficient inp... |
| 5.4 | 2025-02-21 | CVE-2024-13388 | cve | The TCBD Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tcbdtooltip_text' shortcode in all versions up to, and includ... |
| Page(s) : 1 ... 949 950 951 952 953 954 955 956 957 958 [959] 960 961 962 963 964 965 966 967 968 969 ... | Result(s) : 326621 |
