9.8

CVSS3.1

CVE-2024-12366 - CVE-2024-12366

PandasAI uses an interactive prompt function that is vulnerable to prompt injection and run arbitrary Python code that can lead to Remote Code Execution (RCE) instead of the intended explanation of the natural language processing by the LLM.

πŸ“… Published: Feb. 11, 2025, 12:42 p.m. πŸ”„ Last Modified: Feb. 11, 2025, 8:15 p.m.

5.9

CVSS4.0

CVE-2025-0588 -

In affected versions of Octopus Server it was possible for a user with sufficient access to set custom headers in all server responses. By submitting a specifically crafted referrer header the user could ensure that all subsequent server responses would return 500 errors rendering the site mostly u…

πŸ“… Published: Feb. 11, 2025, 11:22 a.m. πŸ”„ Last Modified: July 2, 2025, 5:24 p.m.

6.4

CVSS3.1

CVE-2024-13506 - GeoDirectory – WP Business Directory Plugin and Classified Listings Directory <= 2.8.97 - Authentic…

The GeoDirectory – WP Business Directory Plugin and Classified Listings Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the display_name profile parameter in all versions up to, and including, 2.8.97 due to insufficient input sanitization and output escaping. This ma…

πŸ“… Published: Feb. 11, 2025, 11:10 a.m. πŸ”„ Last Modified: Feb. 12, 2025, 7:36 p.m.

4.9

CVSS3.1

CVE-2025-0862 - SuperSaaS – online appointment scheduling <= 2.1.12 - Authenticated (Contributor+) Stored Cross-Sit…

The SuperSaaS – online appointment scheduling plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the β€˜after’ parameter in all versions up to, and including, 2.1.12 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with…

πŸ“… Published: Feb. 11, 2025, 11:10 a.m. πŸ”„ Last Modified: Feb. 12, 2025, 8:51 p.m.

0.0

CVE-2025-26491 -

This CVE ID is a duplicate of CVE-2025-26494.

πŸ“… Published: Feb. 11, 2025, 10:29 a.m. πŸ”„ Last Modified: Feb. 14, 2025, 8:15 p.m.

0.0

CVE-2025-26490 -

This CVE ID is a duplicate of CVE-2025-26495.

πŸ“… Published: Feb. 11, 2025, 10:29 a.m. πŸ”„ Last Modified: Feb. 14, 2025, 8:15 p.m.

6.9

CVSS4.0

CVE-2025-24956 -

A vulnerability has been identified in OpenV2G (All versions < V0.9.6). The OpenV2G EXI parsing feature is missing a length check when parsing X509 serial numbers. Thus, an attacker could introduce a buffer overflow that leads to memory corruption.

πŸ“… Published: Feb. 11, 2025, 10:29 a.m. πŸ”„ Last Modified: Sept. 24, 2025, 12:57 a.m.

7.1

CVSS4.0

CVE-2025-24812 -

A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0) (All versions < V4.7), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0) (All versions < V4.7), SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0) (All versions < V4.7), SIMATIC S7-1200 CPU 1…

πŸ“… Published: Feb. 11, 2025, 10:29 a.m. πŸ”„ Last Modified: Feb. 12, 2025, 8:51 p.m.

8.7

CVSS4.0

CVE-2025-24811 -

A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0), SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/…

πŸ“… Published: Feb. 11, 2025, 10:29 a.m. πŸ”„ Last Modified: Feb. 12, 2025, 8:51 p.m.

5.3

CVSS4.0

CVE-2025-24532 -

A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions < V3.0.0), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions < V3.…

πŸ“… Published: Feb. 11, 2025, 10:29 a.m. πŸ”„ Last Modified: Feb. 12, 2025, 8:51 p.m.
Total resulsts: 343183
Page 6195 of 34,319
Β« previous page Β» next page
Filters