| Page(s) : 1 ... 963 964 965 966 967 968 969 970 971 972 [973] 974 975 976 977 978 979 980 981 982 983 ... | Result(s) : 326647 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.4 | 2025-02-19 | CVE-2024-13339 | cve | The DeBounce Email Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.6.6. This is due to missing or incorrect no... |
| 6.1 | 2025-02-19 | CVE-2024-13363 | cve | The Raptive Ads plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'poc' parameter in all versions up to, and including, 3.6.3 due to insuffi... |
| 5.3 | 2025-02-19 | CVE-2024-13364 | cve | The Raptive Ads plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the site_ads_files_reset() and cls_file_reset() functions in all v... |
| N/A | 2025-02-19 | CVE-2025-1007 | cve | In OpenVSX version v0.9.0 to v0.20.0, the /user/namespace/{namespace}/details API allows a user to edit all namespace details, even if the user is not a namespace Owner or Co... |
| 4.8 | 2025-02-19 | CVE-2025-1024 | cve | A vulnerability exists in ChurchCRM 5.13.0 that allows an attacker to execute arbitrary JavaScript in a victim's browser via Reflected Cross-Site Scripting (XSS) in the Edi... |
| 8.8 | 2025-02-19 | CVE-2025-1132 | cve | A time-based blind SQL Injection vulnerability exists in the ChurchCRM 5.13.0 and prior EditEventAttendees.php within the EN_tyid parameter. The parameter is directly inserted i... |
| 7.2 | 2025-02-19 | CVE-2025-1133 | cve | A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based blind SQL Injection vulnerability in ... |
| 7.2 | 2025-02-19 | CVE-2025-1134 | cve | A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based and time-based blind SQL Injection vu... |
| 7.2 | 2025-02-19 | CVE-2025-1135 | cve | A vulnerability exists in ChurchCRM 5.13.0. and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based and time-based blind SQL Injection v... |
| 7.5 | 2025-02-19 | CVE-2024-13489 | cve | The LTL Freight Quotes – Old Dominion Edition plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' and 'dropship_edit_id' parameters in all ... |
| N/A | 2025-02-19 | CVE-2025-1075 | cve | Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions |
| 4.3 | 2025-02-19 | CVE-2025-1447 | cve | A vulnerability was found in kasuganosoras Pigeon 1.0.177. It has been declared as critical. This vulnerability affects unknown code of the file /pigeon/imgproxy/index.php. The ... |
| N/A | 2025-02-19 | CVE-2024-57261 | cve | In barebox before 2025.01.0, request2size in common/dlmalloc.c has an integer overflow, a related issue to CVE-2024-57258. |
| N/A | 2025-02-19 | CVE-2024-57262 | cve | In barebox before 2025.01.0, ext4fs_read_symlink has an integer overflow for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffff... |
| 7.3 | 2025-02-19 | CVE-2025-1448 | cve | A vulnerability was found in Synway SMG Gateway Management Software up to 20250204. It has been rated as critical. This issue affects some unknown processing of the file 9-12pin... |
| 7.2 | 2025-02-19 | CVE-2024-11582 | cve | The Subscribe2 – Form, Email Subscribers & Newsletters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ip parameter in all versions up to, and includin... |
| 6.4 | 2025-02-19 | CVE-2024-13443 | cve | The Easypromos Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Easypromos shortcode in all versions up to, and including, 1.3.8 du... |
| 4.3 | 2025-02-19 | CVE-2025-22622 | cve | Age Verification for your checkout page. Verify your customer's identity 1.20.0 was found to be vulnerable. The web application dynamically generates web content without va... |
| 8.8 | 2025-02-19 | CVE-2025-1441 | cve | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.1007. This is due to missing ... |
| 6.1 | 2025-02-19 | CVE-2024-13508 | cve | The Booking Package plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the locale parameter in all versions up to, and including, 1.6.72 due to insufficien... |
| Page(s) : 1 ... 963 964 965 966 967 968 969 970 971 972 [973] 974 975 976 977 978 979 980 981 982 983 ... | Result(s) : 326647 |
