| CVE-2024-9963 |
Insufficient data validation in Downloads in Google Chrome prior to 130.0.6723.58 allowed a remote a... |
|
2024-10-15 |
View Details |
| CVE-2024-21199 |
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions t... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-38190 |
Missing authorization in Power Platform allows an unauthenticated attacker to view sensitive informa... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-47943 |
The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Proc... |
|
2024-10-15 |
View Details |
| CVE-2024-9964 |
Inappropriate implementation in Payments in Google Chrome prior to 130.0.6723.58 allowed a remote at... |
|
2024-10-15 |
View Details |
| CVE-2024-38204 |
Improper Access Control in Imagine Cup allows an authorized attacker to elevate privileges over a ne... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-21198 |
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versi... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-38139 |
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges o... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-9982 |
AIM LINE Marketing Platform from Esi Technology does not properly validate a specific query paramete... |
CRITICAL |
2024-10-15 |
View Details |
| CVE-2024-9965 |
Insufficient data validation in DevTools in Google Chrome on Windows prior to 130.0.6723.58 allowed ... |
|
2024-10-15 |
View Details |
| CVE-2024-21197 |
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). ... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-45085 |
IBM WebSphere Application Server 8.5 is vulnerable to a denial of service, under certain configurati... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-9981 |
The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing remote ... |
|
2024-10-15 |
View Details |
| CVE-2024-9966 |
Inappropriate implementation in Navigations in Google Chrome prior to 130.0.6723.58 allowed a remote... |
|
2024-10-15 |
View Details |
| CVE-2024-21196 |
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: X Plugin). Supported ... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-10004 |
Opening an external link to an HTTP website when Firefox iOS was previously closed and had an HTTPS ... |
|
2024-10-15 |
View Details |
| CVE-2024-9980 |
The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing remote ... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-9968 |
WebEIP v3.0 from
NewType does not properly validate user input, allowing remote attackers with re... |
|
2024-10-15 |
View Details |
| CVE-2024-21195 |
Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Layout Templates). ... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-9966 |
Inappropriate implementation in Navigations in Google Chrome prior to 130.0.6723.58 allowed a remote... |
|
2024-10-15 |
View Details |
| CVE-2024-9837 |
The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrar... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-9969 |
NewType WebEIP v3.0 does not properly validate user input, allowing a remote attacker with regular p... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-21194 |
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions t... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-9965 |
Insufficient data validation in DevTools in Google Chrome on Windows prior to 130.0.6723.58 allowed ... |
|
2024-10-15 |
View Details |
| CVE-2024-9972 |
Property Management System from ChanGate has a SQL Injection vulnerability, allowing unauthenticated... |
CRITICAL |
2024-10-15 |
View Details |
| CVE-2024-9970 |
The FlowMaster BPM Plus system from NewType has a privilege escalation vulnerability. Remote attacke... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-21193 |
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versio... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-9964 |
Inappropriate implementation in Payments in Google Chrome prior to 130.0.6723.58 allowed a remote at... |
|
2024-10-15 |
View Details |
| CVE-2024-46898 |
SHIRASAGI prior to v1.19.1 processes URLs in HTTP requests improperly, resulting in a path traversal... |
|
2024-10-15 |
View Details |
| CVE-2024-9971 |
The specific query functionality in the FlowMaster BPM Plus from NewType does not properly restrict ... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-21192 |
Vulnerability in the Oracle Enterprise Manager for Fusion Middleware product of Oracle Fusion Middle... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-9963 |
Insufficient data validation in Downloads in Google Chrome prior to 130.0.6723.58 allowed a remote a... |
|
2024-10-15 |
View Details |
| CVE-2024-9944 |
The WooCommerce plugin for WordPress is vulnerable to HTML Injection in all versions up to, and incl... |
|
2024-10-15 |
View Details |
| CVE-2024-9972 |
Property Management System from ChanGate has a SQL Injection vulnerability, allowing unauthenticated... |
CRITICAL |
2024-10-15 |
View Details |
| CVE-2024-21191 |
Vulnerability in the Oracle Enterprise Manager Fusion Middleware Control product of Oracle Fusion Mi... |
|
2024-10-15 |
View Details |
| CVE-2024-9962 |
Inappropriate implementation in Permissions in Google Chrome prior to 130.0.6723.58 allowed a remote... |
|
2024-10-15 |
View Details |
| CVE-2024-0129 |
NVIDIA NeMo contains a vulnerability in SaveRestoreConnector where a user may cause a path traversal... |
|
2024-10-15 |
View Details |
| CVE-2024-46898 |
SHIRASAGI prior to v1.19.1 processes URLs in HTTP requests improperly, resulting in a path traversal... |
|
2024-10-15 |
View Details |
| CVE-2024-9973 |
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as criti... |
CRITICAL |
2024-10-15 |
View Details |
| CVE-2024-21190 |
Vulnerability in the Oracle Global Lifecycle Management FMW Installer product of Oracle Fusion Middl... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-9961 |
Use after free in ParcelTracking in Google Chrome on iOS prior to 130.0.6723.58 allowed a remote att... |
|
2024-10-15 |
View Details |
| CVE-2024-21535 |
Versions of the package markdown-to-jsx before 7.4.0 are vulnerable to Cross-site Scripting (XSS) vi... |
|
2024-10-15 |
View Details |
| CVE-2024-9974 |
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critica... |
CRITICAL |
2024-10-15 |
View Details |
| CVE-2024-21172 |
Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Applications (componen... |
CRITICAL |
2024-10-15 |
View Details |
| CVE-2024-9960 |
Use after free in Dawn in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to potentia... |
|
2024-10-15 |
View Details |
| CVE-2024-9971 |
The specific query functionality in the FlowMaster BPM Plus from NewType does not properly restrict ... |
HIGH |
2024-10-15 |
View Details |
| CVE-2024-9975 |
A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as cri... |
|
2024-10-15 |
View Details |
| CVE-2024-41344 |
A Cross-Site Request Forgery (CSRF) in Codeigniter 3.1.13 allows attackers to arbitrarily change the... |
|
2024-10-15 |
View Details |
| CVE-2024-9959 |
Use after free in DevTools in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who had... |
|
2024-10-15 |
View Details |
| CVE-2024-9970 |
The FlowMaster BPM Plus system from NewType has a privilege escalation vulnerability. Remote attacke... |
HIGH |
2024-10-15 |
View Details |