Page(s) : 1 ... 962 963 964 965 966 967 968 969 970 971 [972] 973 974 975 976 977 978 979 980 981 982 ... | Result(s) : 326662 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
7.3 | 2025-02-19 | CVE-2025-1464 | cve | A vulnerability, which was classified as critical, has been found in Baiyi Cloud Asset Management System up to 20250204. This issue affects some unknown processing of the file /... |
N/A | 2025-02-19 | CVE-2024-12173 | cve | The Master Slider WordPress plugin before 3.10.5 does not sanitise and escape some of its settings, which could allow high privilege users such as Editor and above to perform S... |
6.4 | 2025-02-19 | CVE-2024-13799 | cve | The User Private Files – File Upload & Download Manager with Secure File Sharing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘new-fldr-name’ parame... |
6.4 | 2025-02-19 | CVE-2025-1065 | cve | The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Import Data From File feature in ... |
N/A | 2025-02-19 | CVE-2025-22888 | cve | Movable Type contains a stored cross-site scripting vulnerability in the custom block edit page of MT Block Editor. If exploited, an arbitrary script may be executed on a logged... |
N/A | 2025-02-19 | CVE-2025-24841 | cve | Movable Type contains a stored cross-site scripting vulnerability in the HTML edit mode of MT Block Editor. It is exploitable when TinyMCE6 is used as a rich text editor and an ... |
N/A | 2025-02-19 | CVE-2025-25054 | cve | Movable Type contains a reflected cross-site scripting vulnerability in the user information edit page. When Multi-Factor authentication plugin is enabled and a user accesses a ... |
N/A | 2025-02-19 | CVE-2025-0633 | cve | Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows attacker to read out of bound memory |
6.4 | 2025-02-19 | CVE-2024-11335 | cve | The UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's '... |
6.4 | 2025-02-19 | CVE-2024-11753 | cve | The UMich OIDC Login plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'umich_oidc_button' shortcode in all versions up to, and i... |
6.4 | 2025-02-19 | CVE-2024-11778 | cve | The CanadaHelps Embedded Donation Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'embedcdn' shortcode in all versions up ... |
6.1 | 2025-02-19 | CVE-2024-12069 | cve | The Lexicata plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, ... |
6.1 | 2025-02-19 | CVE-2024-12339 | cve | The Digihood HTML Sitemap plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘channel' parameter in all versions up to, and including, 3.1.1 due t... |
6.4 | 2025-02-19 | CVE-2024-12522 | cve | The Yay! Forms | Embed Custom Forms, Surveys, and Quizzes Easily plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'yayforms' sho... |
6.4 | 2025-02-19 | CVE-2024-13390 | cve | The ADFO – Custom data in admin dashboard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'adfo_list' shortcode in all versions... |
4.3 | 2025-02-19 | CVE-2024-13405 | cve | The Apptivo Business Site CRM plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.3. This is due to missing or incorrect non... |
6.4 | 2025-02-19 | CVE-2024-13462 | cve | The WP Wiki Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wiki' shortcode in all versions up to, and including, 2.0.... |
7.5 | 2025-02-19 | CVE-2024-13468 | cve | The Trash Duplicate and 301 Redirect plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'duplicates-action-top' a... |
6.4 | 2025-02-19 | CVE-2024-13589 | cve | The YouTube Playlists with Schema plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'yt_grid' shortcode in all versions up to, an... |
5.4 | 2025-02-19 | CVE-2024-13591 | cve | The Team Builder For WPBakery Page Builder(Formerly Visual Composer) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'team-builder-v... |
Page(s) : 1 ... 962 963 964 965 966 967 968 969 970 971 [972] 973 974 975 976 977 978 979 980 981 982 ... | Result(s) : 326662 |