Ugrás a tartalomra

Riasztások

2025. Feb. 14.

NA - CVE-2025-26523 - This vulnerability exists in RupeeWeb trading...

This vulnerability exists in RupeeWeb trading platform due to insufficient authorization controls on certain API endpoints handling addition and deletion operations. Successful exploitation of this...
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-26524 - This vulnerability exists in RupeeWeb trading...

This vulnerability exists in RupeeWeb trading platform due to missing rate limiting on OTP requests in certain API endpoints. An authenticated remote attacker could exploit this vulnerability by...
security-database.com
Tovább
2025. Feb. 14.

Critical - CVE-2024-13152 - Authorization Bypass Through User-Controlled...

Authorization Bypass Through User-Controlled SQL Primary Key vulnerability in BSS Software Mobuy Online Machinery Monitoring Panel allows SQL Injection.This issue affects Mobuy Online Machinery...
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2024-52500 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in monetagwp Monetag Official Plugin allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Monetag Official Plugin: from...
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-0867 - The standard user uses the run as function to...

The standard user uses the run as function to start the MEAC applications with administrative privileges. To ensure that the system can startup on its own, the credentials of the administrator were...
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-22698 - Missing Authorization vulnerability in Ability,...

Missing Authorization vulnerability in Ability, Inc Accessibility Suite by Online ADA allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Accessibility Suite...
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-22702 - Missing Authorization vulnerability in EPC...

Missing Authorization vulnerability in EPC Photography. This issue affects Photography: from n/a through 7.5.2.
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-22705 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in godthor Disqus Popular Posts allows Reflected XSS. This issue affects Disqus Popular Posts: from n/a through 2.1.1.
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-23428 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound QMean – WordPress Did You Mean allows Reflected XSS. This issue affects...
security-database.com
Tovább
2025. Feb. 14.

NA - CVE-2025-23431 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Envato Affiliater allows Reflected XSS. This issue affects Envato...
security-database.com
Tovább
Nyelv