Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

CVE güvenlik açıkları, KEV etiketleri, detay sayfaları ve kategori bazlı listeleme.
Toplam kayıt70,105
Sayfa3501 / 3506
FiltreYok
Unknown CVSS: - Yayın: 2025-01-02 10:15:08

CVE-2024-56037

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SoftClever Limited User Referral user-referral-free allows Reflected XSS.This issue affects User Referral: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 10:15:08

CVE-2024-56036

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ondrej Donek odPhotogallery od-photogallery-plugin allows Reflected XSS.This issue affects odPhotogallery: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 10:15:08

CVE-2024-56035

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kurt Payne Upload Scanner upload-scanner allows Reflected XSS.This issue affects Upload Scanner: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 10:15:07

CVE-2024-56034

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Irshad A.Khan Services updates for customers service-updates-for-customers allows Reflected XSS.This issue affects Services updates for customers: f…
Unknown CVSS: - Yayın: 2025-01-02 10:15:07

CVE-2024-56033

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 FAQs faqs allows Reflected XSS.This issue affects FAQs: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 10:15:07

CVE-2024-56032

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FolioVision FV Descriptions fv-descriptions allows Reflected XSS.This issue affects FV Descriptions: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 10:15:07

CVE-2024-56030

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Carver Lab 10CentMail 10centmail-subscription-management-and-analytics allows Reflected XSS.This issue affects 10CentMail: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 10:15:07

CVE-2024-56029

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in dreamwinner Easy Language Switcher easy-language-switcher allows Reflected XSS.This issue affects Easy Language Switcher: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 10:15:07

CVE-2024-56028

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in lemonadestudio Lemonade Social Networks Autoposter Pinterest lemonade-sna-pinterest-edition allows Reflected XSS.This issue affects Lemonade Social…
Unknown CVSS: - Yayın: 2025-01-02 10:15:07

CVE-2024-56027

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bizswoop Leads CRM leads-crm allows Reflected XSS.This issue affects Leads CRM: from n/a through
Unknown CVSS: - Yayın: 2025-01-02 10:15:06

CVE-2024-56019

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gavinr Inline Footnotes inline-footnotes allows Stored XSS.This issue affects Inline Footnotes: from n/a through
Medium CVSS: 6.9 Yayın: 2025-01-02 10:15:06

CVE-2024-13103

Dlink Dir-816 Firmware CWE-266
A vulnerability, which was classified as critical, has been found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This issue affects some unknown processing of the file /goform/form2AddVrtsrv.cgi of the component Virtual Service Handler. The manipulatio…
Medium CVSS: 6.9 Yayın: 2025-01-02 10:15:06

CVE-2024-13102

Dlink Dir-816 Firmware CWE-266
A vulnerability classified as critical was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This vulnerability affects unknown code of the file /goform/DDNS of the component DDNS Service. The manipulation leads to improper access controls. The atta…
High CVSS: 7.2 Yayın: 2025-01-02 10:15:06

CVE-2024-13062

CWE-77
An unintended entry point vulnerability has been identified in certain router models, which may allow for arbitrary command execution. Refer to the ' 01/02/2025 ASUS Router AiCloud vulnerability' section on the ASUS Security Advisory for more informa…
Medium CVSS: 5.3 Yayın: 2025-01-02 09:15:18

CVE-2024-13093

Code-projects Job Recruitment CWE-74
A vulnerability, which was classified as critical, has been found in code-projects Job Recruitment 1.0. This issue affects some unknown processing of the file /_parse/_call_main_search_ajax.php of the component Seeker Profile Handler. The manipulatio…
Medium CVSS: 5.3 Yayın: 2025-01-02 09:15:17

CVE-2024-13092

Code-projects Job Recruitment CWE-74
A vulnerability classified as critical was found in code-projects Job Recruitment 1.0. This vulnerability affects unknown code of the file /_parse/_call_job/search_ajax.php of the component Job Post Handler. The manipulation of the argument n leads t…
High CVSS: 7.2 Yayın: 2025-01-02 09:15:17

CVE-2024-12912

CWE-20
An improper input insertion vulnerability in AiCloud on certain router models may lead to arbitrary command execution. Refer to the '01/02/2025 ASUS Router AiCloud vulnerability' section on the ASUS Security Advisory for more information.
Medium CVSS: 4.7 Yayın: 2025-01-02 06:15:07

CVE-2024-12595

Mitchelllevy Ahathat CWE-79
The AHAthat Plugin WordPress plugin through 1.6 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers
Medium CVSS: 5.9 Yayın: 2025-01-02 06:15:07

CVE-2024-11357

Goodlayers Goodlayers Core CWE-79
The goodlayers-core WordPress plugin before 2.0.10 does not sanitise and escape some of its settings, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.