Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 962 963 964 965 966 967 968 969 970 971 [972] 973 974 975 976 977 978 979 980 981 982 ... Result(s) : 326662

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
7.3 2025-02-19 CVE-2025-1464 cve A vulnerability, which was classified as critical, has been found in Baiyi Cloud Asset Management System up to 20250204. This issue affects some unknown processing of the file /...
N/A 2025-02-19 CVE-2024-12173 cve The Master Slider WordPress plugin before 3.10.5 does not sanitise and escape some of its settings, which could allow high privilege users such as Editor and above to perform S...
6.4 2025-02-19 CVE-2024-13799 cve The User Private Files – File Upload & Download Manager with Secure File Sharing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘new-fldr-name’ parame...
6.4 2025-02-19 CVE-2025-1065 cve The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Import Data From File feature in ...
N/A 2025-02-19 CVE-2025-22888 cve Movable Type contains a stored cross-site scripting vulnerability in the custom block edit page of MT Block Editor. If exploited, an arbitrary script may be executed on a logged...
N/A 2025-02-19 CVE-2025-24841 cve Movable Type contains a stored cross-site scripting vulnerability in the HTML edit mode of MT Block Editor. It is exploitable when TinyMCE6 is used as a rich text editor and an ...
N/A 2025-02-19 CVE-2025-25054 cve Movable Type contains a reflected cross-site scripting vulnerability in the user information edit page. When Multi-Factor authentication plugin is enabled and a user accesses a ...
N/A 2025-02-19 CVE-2025-0633 cve Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows attacker to read out of bound memory
6.4 2025-02-19 CVE-2024-11335 cve The UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's '...
6.4 2025-02-19 CVE-2024-11753 cve The UMich OIDC Login plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'umich_oidc_button' shortcode in all versions up to, and i...
6.4 2025-02-19 CVE-2024-11778 cve The CanadaHelps Embedded Donation Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'embedcdn' shortcode in all versions up ...
6.1 2025-02-19 CVE-2024-12069 cve The Lexicata plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, ...
6.1 2025-02-19 CVE-2024-12339 cve The Digihood HTML Sitemap plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘channel' parameter in all versions up to, and including, 3.1.1 due t...
6.4 2025-02-19 CVE-2024-12522 cve The Yay! Forms | Embed Custom Forms, Surveys, and Quizzes Easily plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'yayforms' sho...
6.4 2025-02-19 CVE-2024-13390 cve The ADFO – Custom data in admin dashboard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'adfo_list' shortcode in all versions...
4.3 2025-02-19 CVE-2024-13405 cve The Apptivo Business Site CRM plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.3. This is due to missing or incorrect non...
6.4 2025-02-19 CVE-2024-13462 cve The WP Wiki Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wiki' shortcode in all versions up to, and including, 2.0....
7.5 2025-02-19 CVE-2024-13468 cve The Trash Duplicate and 301 Redirect plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'duplicates-action-top' a...
6.4 2025-02-19 CVE-2024-13589 cve The YouTube Playlists with Schema plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'yt_grid' shortcode in all versions up to, an...
5.4 2025-02-19 CVE-2024-13591 cve The Team Builder For WPBakery Page Builder(Formerly Visual Composer) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'team-builder-v...
Page(s) : 1 ... 962 963 964 965 966 967 968 969 970 971 [972] 973 974 975 976 977 978 979 980 981 982 ... Result(s) : 326662