Ugrás a tartalomra

Riasztások

2025. Júl. 16.

High - CVE-2025-6993 - The Ultimate WP Mail plugin for WordPress is...

The Ultimate WP Mail plugin for WordPress is vulnerable to Privilege Escalation due to improper authorization within the get_email_log_details() AJAX handler in versions 1.0.17 to 1.3.6. The...
security-database.com
Tovább
2025. Júl. 16.

Medium - CVE-2025-7035 - The Media Library Assistant plugin for...

The Media Library Assistant plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's mla_tag_cloud and mla_term_list shortcodes in all versions up to, and including,...
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-7699 - An improper access control vulnerability was...

An improper access control vulnerability was found in the EZ Sync Manager of ADM, which allows authenticated users to copy arbitrary files from the server file system into their own EZSync folder....
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2024-10029 - In Eclipse GlassFish version 7.0.15 is possible...

In Eclipse GlassFish version 7.0.15 is possible to perform Reflected Cross-site scripting attacks in the Administration Console.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2024-10031 - In Eclipse GlassFish version 7.0.15 is possible...

In Eclipse GlassFish version 7.0.15 is possible to perform Stored Cross-site Scripting attacks by modifying the configuration file in the underlying operating system.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2024-10032 - In Eclipse GlassFish version 7.0.15 is possible...

In Eclipse GlassFish version 7.0.15 is possible to perform Stored Cross-site scripting attacks in the Administration Console.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2024-9342 - In Eclipse GlassFish version 7.0.16 or earlier...

In Eclipse GlassFish version 7.0.16 or earlier it is possible to perform Login Brute Force attacks as there is no limitation in the number of failed login attempts.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2024-9343 - In Eclipse GlassFish version 7.0.15 is possible...

In Eclipse GlassFish version 7.0.15 is possible to perform Stored Cross-site scripting attacks in the Administration Console.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-48150 - Missing Authorization vulnerability in Bill...

Missing Authorization vulnerability in Bill Minozzi Real Estate Property 2024 Create Your Own Fields and Search Bar WP Plugin allows Exploiting Incorrectly Configured Access Control Security...
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-48153 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in Atakan Au Import CDN-Remote Images allows Stored XSS. This issue affects Import CDN-Remote Images: from n/a through 2.1.2.
security-database.com
Tovább
Nyelv