Page(s) : 1 ... 88 89 90 91 92 93 94 95 96 97 [98] 99 100 101 102 103 104 105 106 107 108 ... | Result(s) : 39842 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
9.8 | 2023-10-17 | CVE-2023-22069 | cve | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily e... |
9.8 | 2023-10-17 | CVE-2023-22072 | cve | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). The supported version that is affected is 12.2.1.3.0. Easily exploitable vul... |
9.8 | 2023-10-17 | CVE-2023-22089 | cve | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily e... |
9.8 | 2023-10-17 | CVE-2023-41630 | cve | eSST Monitoring v2.147.1 was discovered to contain a remote code execution (RCE) vulnerability via the Gii code generator component. |
9.8 | 2023-10-17 | CVE-2023-45951 | cve | lylme_spage v1.7.0 was discovered to contain a SQL injection vulnerability via the $userip parameter at function.php. |
9.8 | 2023-10-17 | CVE-2023-45952 | cve | An arbitrary file upload vulnerability in the component ajax_link.php of lylme_spage v1.7.0 allows attackers to execute arbitrary code via uploading a crafted file. |
9.8 | 2023-10-17 | CVE-2023-27132 | cve | TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only abo... |
9.8 | 2023-10-17 | CVE-2023-27133 | cve | TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www folder. This may enable privilege esc... |
9.8 | 2023-10-17 | CVE-2023-45386 | cve | In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can perform SQL injection via `extratabspro::searchcategory()`, `extratabspro::searchpro... |
9.8 | 2023-10-17 | CVE-2023-44693 | cve | D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via /importexport.php. |
9.8 | 2023-10-17 | CVE-2023-44694 | cve | D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via /log/mailrecvview.php. |
9.8 | 2023-10-17 | CVE-2011-10004 | cve | A vulnerability was found in reciply Plugin up to 1.1.7 on WordPress. It has been rated as critical. This issue affects some unknown processing of the file uploadImage.php. The ... |
9.8 | 2023-10-16 | CVE-2023-45984 | cve | TOTOLINK X5000R V9.1.0u.6118_B20201102 and TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the lang parameter in the function setLanguageCfg. |
9.8 | 2023-10-16 | CVE-2023-43119 | cve | An Access Control issue discovered in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, also fixed in 22.7, 31.7.2 allows attackers to gain escalated privileges using craft... |
9.8 | 2023-10-16 | CVE-2023-4666 | cve | The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create a... |
9.8 | 2023-10-16 | CVE-2023-40852 | cve | SQL Injection vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to obtain sensitive information via crafted ... |
9.6 | 2023-10-16 | CVE-2023-45144 | cve | com.xwiki.identity-oauth:identity-oauth-ui is a package to aid in building identity and service providers based on OAuth authorizations. When a user logs in via the OAuth method... |
10 | 2023-10-16 | CVE-2023-20198 | cve | Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are updating the list of fixed releases ... |
9.1 | 2023-10-16 | CVE-2023-45685 | cve | Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attack... |
9.8 | 2023-10-16 | CVE-2023-3991 | cve | An OS command injection vulnerability exists in the httpd iperfrun.cgi functionality of FreshTomato 2023.3. A specially crafted HTTP request can lead to arbitrary command execut... |
Page(s) : 1 ... 88 89 90 91 92 93 94 95 96 97 [98] 99 100 101 102 103 104 105 106 107 108 ... | Result(s) : 39842 |