Riasztások | HunCERT csoport

2025. jún. 6.

NA - CVE-2025-49075 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Wishlist allows Stored XSS.This issue affects Wishlist: from n/a through...

security-database.com

Tovább

2025. jún. 6.

NA - CVE-2025-49076 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in POSIMYTH Innovations The Plus Addons for Elementor Page Builder Lite allows Stored...

security-database.com

Tovább

2025. jún. 6.

NA - CVE-2025-49077 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in ThemeHigh Dynamic Pricing and Discount Rules allows Cross Site Request Forgery.This issue affects Dynamic Pricing and Discount Rules: from n/a...

security-database.com

Tovább

2025. jún. 6.

Medium - CVE-2025-5239 - The Domain For Sale plugin for WordPress is...

The Domain For Sale plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘class_name’ parameter in all versions up to, and including, 3.0.10 due to insufficient input...

security-database.com

Tovább

2025. jún. 6.

Medium - CVE-2025-5760 - The Simple History plugin for WordPress is...

The Simple History plugin for WordPress is vulnerable to sensitive data exposure via Detective Mode due to improper sanitization within the append_debug_info_to_context() function in versions prior...

security-database.com

Tovább

2025. jún. 6.

Medium - CVE-2025-5761 - A vulnerability, which was classified as...

A vulnerability, which was classified as critical, has been found in PHPGurukul BP Monitoring Management System 1.0. This issue affects some unknown processing of the file /edit-family-member.php....

security-database.com

Tovább

2025. jún. 6.

Medium - CVE-2025-5762 - A vulnerability, which was classified as...

A vulnerability, which was classified as critical, was found in code-projects Patient Record Management System 1.0. Affected is an unknown function of the file view_hematology.php. The manipulation...

security-database.com

Tovább

2025. jún. 6.

Medium - CVE-2025-5763 - A vulnerability has been found in Tenda CP3...

A vulnerability has been found in Tenda CP3 11.10.00.2311090948 and classified as critical. Affected by this vulnerability is the function sub_F3C8C of the file apollo. The manipulation leads to...

security-database.com

Tovább

2025. jún. 6.

NA - CVE-2023-25995 - Improper Control of Filename for...

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in choicehomemortgage AI Mortgage Calculator allows PHP Local File...

security-database.com

Tovább

2025. jún. 6.

NA - CVE-2023-25997 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in SolaPlugins Sola Support Ticket allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sola Support Ticket: from n/a...

security-database.com

Tovább

Telefon:	+36 1 279 6222 (09:00-16:00)
Email:	@email
Cím:	1111 Budapest, Kende u. 13-17.