| Page(s) : 1 ... 955 956 957 958 959 960 961 962 963 964 [965] 966 967 968 969 970 971 972 973 974 975 ... | Result(s) : 326621 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.5 | 2025-02-20 | CVE-2024-13476 | cve | The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to SQL Injection via the 'engtz_wd_save_dropship' AJAX endpoint in all versions up to, ... |
| 5.3 | 2025-02-20 | CVE-2024-13520 | cve | The Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) plugin for WordPress is vulnerable to unauthorized modification of data|loss of data due to a missing capabil... |
| 4.8 | 2025-02-20 | CVE-2024-13748 | cve | The Ultimate Classified Listings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title parameter in all versions up to, and including, 1.4 due to insuf... |
| 8.8 | 2025-02-20 | CVE-2024-13753 | cve | The Ultimate Classified Listings plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing or incorrect ... |
| 9.8 | 2025-02-20 | CVE-2024-13789 | cve | The ravpage plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.31 via deserialization of untrusted input from the 'paramsv2&... |
| 9.8 | 2025-02-20 | CVE-2024-13792 | cve | The WooCommerce Food - Restaurant Menu & Food ordering plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.3.2. This is d... |
| 5.4 | 2025-02-20 | CVE-2024-13802 | cve | The Bandsintown Events plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bandsintown_events' shortcode in all versions up to, an... |
| 4.8 | 2025-02-20 | CVE-2024-13849 | cve | The Cookie Notice Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.3.0 due to insufficient input sanitization and ou... |
| 4.3 | 2025-02-20 | CVE-2024-13855 | cve | The Prime Addons for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.0.1 via the pae_global_block shortc... |
| 5.4 | 2025-02-20 | CVE-2024-6432 | cve | The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter within the plugin's shortcode Content ... |
| 6.5 | 2025-02-20 | CVE-2025-0866 | cve | The Legoeso PDF Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘checkedVals’ parameter in all versions up to, and including, 1.2.2 due to insuffi... |
| 5.4 | 2025-02-20 | CVE-2025-1328 | cve | The Typed JS: A typewriter style animation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘typespeed’ parameter in all versions up to, and including, ... |
| 5.3 | 2025-02-20 | CVE-2025-1483 | cve | The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the engtz_wd_save_drops... |
| N/A | 2025-02-20 | CVE-2025-1222 | cve | An attacker can gain application privileges in order to perform limited modification and/or read arbitrary data in Citrix Secure Access Client for Mac |
| N/A | 2025-02-20 | CVE-2025-1223 | cve | An attacker can gain application privileges in order to perform limited modification and/or read arbitrary data in Citrix Secure Access Client for Mac |
| N/A | 2025-02-20 | CVE-2025-1293 | cve | Hermes versions up to 0.4.0 improperly validated the JWT provided when using the AWS ALB authentication mode, potentially allowing for authentication bypass. This vulnerability,... |
| 7.5 | 2025-02-20 | CVE-2025-1492 | cve | Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file |
| N/A | 2025-02-20 | CVE-2025-23020 | cve | An issue was discovered in Kwik before 0.10.1. A hash collision vulnerability (in the hash table used to manage connections) allows remote attackers to cause a considerable CPU ... |
| N/A | 2025-02-20 | CVE-2025-24946 | cve | The hash table used to manage connections in picoquic before b80fd3f uses a weak hash function, allowing remote attackers to cause a considerable CPU load on the server (a Hash ... |
| N/A | 2025-02-20 | CVE-2025-24947 | cve | A hash collision vulnerability (in the hash table used to manage connections) in LSQUIC (aka LiteSpeed QUIC) before 4.2.0 allows remote attackers to cause a considerable CPU loa... |
| Page(s) : 1 ... 955 956 957 958 959 960 961 962 963 964 [965] 966 967 968 969 970 971 972 973 974 975 ... | Result(s) : 326621 |
