| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 297968 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.5 | 2025-06-15 | CVE-2025-6093 | cve | A vulnerability classified as critical was found in uYanki board-stm32f103rc-berial up to 84daed541609cb7b46854cc6672a275d1007e295. This vulnerability affects the function heart... |
| 6.3 | 2025-06-15 | CVE-2025-6094 | cve | A vulnerability, which was classified as critical, has been found in FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php.... |
| 7.3 | 2025-06-15 | CVE-2025-6095 | cve | A vulnerability, which was classified as critical, was found in codesiddhant Jasmin Ransomware 1.0.1. Affected is an unknown function of the file /checklogin.php. The manipulati... |
| N/A | 2025-06-15 | CVE-2025-5990 | cve | An input neutralization vulnerability in the Server Name form and API Key form components of Crafty Controller allows a remote, authenticated attacker to perform stored XSS via ... |
| 4.3 | 2025-06-15 | CVE-2025-6092 | cve | A vulnerability was found in comfyanonymous comfyui up to 0.3.39. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /up... |
| N/A | 2025-06-15 | CVE-2025-5964 | cve | A path traversal issue in the API endpoint in M-Files Server before version 25.6.14925.0 allows an authenticated user to read files in the server. |
| N/A | 2025-06-15 | CVE-2025-21085 | cve | PingFederate OAuth2 grant duplication in PostgreSQL persistent storage allows OAuth2 requests to use excessive memory utilization. |
| N/A | 2025-06-15 | CVE-2025-22854 | cve | Improper handling of non-200 http responses in the PingFederate Google Adapter leads to thread exhaustion under normal usage conditions. |
| 8.8 | 2025-06-15 | CVE-2025-6090 | cve | A vulnerability was found in H3C GR-5400AX V100R009L50 and classified as critical. This issue affects the function UpdateWanparamsMulti/UpdateIpv6params of the file /routing/gof... |
| N/A | 2025-06-15 | CVE-2024-25573 | cve | Unsanitized user-supplied data saved in the PingFederate Administrative Console could trigger the execution of JavaScript code in subsequent user processing. |
| 8.8 | 2025-06-15 | CVE-2025-6091 | cve | A vulnerability was found in H3C GR-3000AX V100R007L50. It has been classified as critical. Affected is the function UpdateWanParamsMulti/UpdateIpv6Params of the file /routing/g... |
| 7.8 | 2025-06-15 | CVE-2025-1411 | cve | IBM Security Verify Directory Container 10.0.0.0 through 10.0.3.1 could allow a local user to execute commands as root due to execution with unnecessary privileges. |
| 4.7 | 2025-06-15 | CVE-2025-36041 | cve | IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1 through 3.5.3, and MQ Operator SC2 3.2.0 through 3.... |
| 4.3 | 2025-06-15 | CVE-2025-6089 | cve | A vulnerability has been found in Astun Technology iShare Maps 5.4.0 and classified as problematic. This vulnerability affects unknown code of the file atCheckJS.aspx. The manip... |
| 6.4 | 2025-06-14 | CVE-2025-4667 | cve | The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ssa_admin_... |
| 6.4 | 2025-06-14 | CVE-2025-5238 | cve | The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 4.5.0 due to insuffi... |
| 6.4 | 2025-06-14 | CVE-2025-5337 | cve | The Slider, Gallery, and Carousel by MetaSlider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘aria-label’ parameter in all versions up to, and inclu... |
| 7.2 | 2025-06-14 | CVE-2025-3234 | cve | The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.8.8. Thi... |
| 7.2 | 2025-06-14 | CVE-2025-5487 | cve | The AutomatorWP – Automator plugin for no-code automations, webhooks & custom integrations in WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the fi... |
| 5.9 | 2025-06-14 | CVE-2025-4187 | cve | The UserPro - Community and User Profile WordPress Plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 5.1.10 via the userpro_... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 297968 |
