Ugrás a tartalomra

Riasztások

2025. Júl. 16.

NA - CVE-2025-54042 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in xfinitysoft WP Post Hide allows Cross Site Request Forgery. This issue affects WP Post Hide: from n/a through 1.0.9.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-54043 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YayCommerce SMTP for Amazon SES allows SQL Injection. This issue affects SMTP for...
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-54047 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in QuanticaLabs Cost Calculator allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Cost Calculator: from n/a through 7.4.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-54050 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CyberChimps Responsive Addons for Elementor allows Stored XSS. This issue affects...
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-54051 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins LightBox Block allows Stored XSS. This issue affects LightBox Block: from...
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2024-9408 - In Eclipse GlassFish since version 6.2.5 it is...

In Eclipse GlassFish since version 6.2.5 it is possible to perform a Server Side Request Forgery attack in specific endpoints.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-24759 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CMSJunkie - WordPress Business Directory Plugins WP-BusinessDirectory allows Blind...
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-24777 - Deserialization of Untrusted Data vulnerability...

Deserialization of Untrusted Data vulnerability in awethemes Hillter allows Object Injection. This issue affects Hillter: from n/a through 3.0.7.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-24779 - Deserialization of Untrusted Data vulnerability...

Deserialization of Untrusted Data vulnerability in NooTheme Yogi allows Object Injection. This issue affects Yogi: from n/a through 2.9.0.
security-database.com
Tovább
2025. Júl. 16.

NA - CVE-2025-28955 - Improper Limitation of a Pathname to a...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in FWDesign Easy Video Player Wordpress & WooCommerce allows Path Traversal. This issue...
security-database.com
Tovább
Nyelv