| CVE-2024-6757 |
The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable t... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-9976 |
A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.... |
|
2024-10-15 |
View Details |
| CVE-2024-35584 |
SQL injection vulnerabilities were discovered in Ajax.php, ForWindow.php, ForExport.php, Modules.php... |
|
2024-10-15 |
View Details |
| CVE-2024-9958 |
Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a r... |
|
2024-10-15 |
View Details |
| CVE-2024-9969 |
NewType WebEIP v3.0 does not properly validate user input, allowing a remote attacker with regular p... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-9977 |
A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BR_g5.6_1.11(... |
|
2024-10-15 |
View Details |
| CVE-2024-5749 |
Certain HP DesignJet products may be vulnerable to credential reflection which allow viewing SMTP se... |
|
2024-10-15 |
View Details |
| CVE-2024-9957 |
Use after free in UI in Google Chrome on iOS prior to 130.0.6723.58 allowed a remote attacker who co... |
|
2024-10-15 |
View Details |
| CVE-2024-9968 |
WebEIP v3.0 from
NewType does not properly validate user input, allowing remote attackers with re... |
|
2024-10-15 |
View Details |
| CVE-2024-9979 |
A flaw was found in PyO3. This vulnerability causes a use-after-free issue, potentially leading to m... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-48915 |
Agent Dart is an agent library built for Internet Computer for Dart and Flutter apps. Prior to versi... |
|
2024-10-15 |
View Details |
| CVE-2024-9956 |
Inappropriate implementation in WebAuthentication in Google Chrome on Android prior to 130.0.6723.58... |
|
2024-10-15 |
View Details |
| CVE-2024-9952 |
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. T... |
MEDIUM |
2024-10-15 |
View Details |
| CVE-2024-47767 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
|
2024-10-14 |
View Details |
| CVE-2024-47766 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
|
2024-10-14 |
View Details |
| CVE-2024-6762 |
Jetty PushSessionCacheFilter can be exploited by unauthenticated users
to launch remote DoS attacks... |
|
2024-10-14 |
View Details |
| CVE-2024-46988 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-6763 |
Eclipse Jetty is a lightweight, highly scalable, Java-based web server and Servlet engine . It inclu... |
|
2024-10-14 |
View Details |
| CVE-2024-46980 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-46528 |
An Insecure Direct Object Reference (IDOR) vulnerability in KubeSphere v3.4.1 and v4.1.1 allows low-... |
|
2024-10-14 |
View Details |
| CVE-2023-45817 |
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-9823. Reason: T... |
|
2024-10-14 |
View Details |
| CVE-2024-30117 |
A dynamic search for a prerequisite library could allow the possibility for an attacker to replace t... |
|
2024-10-14 |
View Details |
| CVE-2024-48799 |
An issue in LOREX TECHNOLOGY INC com.lorexcorp.lorexping 1.4.22 allows a remote attacker to obtain s... |
|
2024-10-14 |
View Details |
| CVE-2024-9953 |
A potential denial-of-service (DoS) vulnerability exists in CERT VINCE software versions prior to 3.... |
|
2024-10-14 |
View Details |
| CVE-2024-48798 |
An issue in Hubble Connected (com.hubbleconnected.vervelife) 2.00.81 allows a remote attacker to obt... |
|
2024-10-14 |
View Details |
| CVE-2024-35520 |
Netgear R7000 1.0.11.136 is vulnerable to Command Injection in RMT_invite.cgi via device_name2 param... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-48797 |
An issue in PCS Engineering Preston Cinema (com.prestoncinema.app) 0.2.0 allows a remote attacker to... |
|
2024-10-14 |
View Details |
| CVE-2024-35519 |
Netgear EX6120 v1.0.0.68, Netgear EX6100 v1.0.2.28, and Netgear EX3700 v1.0.0.96 are vulnerable to c... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-48796 |
An issue in EQUES com.eques.plug 1.0.1 allows a remote attacker to obtain sensitive information via ... |
|
2024-10-14 |
View Details |
| CVE-2024-35518 |
Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in genie_fix2.cgi via the wan_dns1_pri p... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-48168 |
A stack overflow vulnerability exists in the sub_402280 function of the HNAP service of D-Link DCS-9... |
|
2024-10-14 |
View Details |
| CVE-2024-6207 |
CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN... |
|
2024-10-14 |
View Details |
| CVE-2024-46535 |
Jepaas v7.2.8 was discovered to contain a SQL injection vulnerability via the orderSQL parameter at ... |
|
2024-10-14 |
View Details |
| CVE-2024-48911 |
OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its config file... |
|
2024-10-14 |
View Details |
| CVE-2024-45741 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.240... |
|
2024-10-14 |
View Details |
| CVE-2024-48909 |
SpiceDB is an open source database for scalably storing and querying fine-grained authorization data... |
|
2024-10-14 |
View Details |
| CVE-2024-45740 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6 and Splunk Cloud Platform versions below 9.2.240... |
|
2024-10-14 |
View Details |
| CVE-2024-48824 |
An issue in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941b10799fb7 al... |
|
2024-10-14 |
View Details |
| CVE-2024-45739 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes plaint... |
|
2024-10-14 |
View Details |
| CVE-2024-48823 |
Local file inclusion in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941... |
|
2024-10-14 |
View Details |
| CVE-2024-45738 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes sensit... |
|
2024-10-14 |
View Details |
| CVE-2024-48822 |
Privilege escalation in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941... |
|
2024-10-14 |
View Details |
| CVE-2024-45737 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below... |
LOW |
2024-10-14 |
View Details |
| CVE-2024-48821 |
Cross Site Scripting vulnerability in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d505... |
|
2024-10-14 |
View Details |
| CVE-2024-45736 |
In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2024-47885 |
The Astro web framework has a DOM Clobbering gadget in the client-side router starting in version 3.... |
|
2024-10-14 |
View Details |
| CVE-2024-46980 |
Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap... |
|
2024-10-14 |
View Details |
| CVE-2024-45735 |
In Splunk Enterprise versions below 9.2.3 and 9.1.6, and Splunk Secure Gateway versions on Splunk Cl... |
MEDIUM |
2024-10-14 |
View Details |
| CVE-2023-48082 |
Nagios XI before 5.11.3 2024R1 was discovered to improperly handle API keys generation (randomly-gen... |
|
2024-10-14 |
View Details |
| CVE-2024-45734 |
In Splunk Enterprise versions 9.3.0, 9.2.3, and 9.1.6, a low-privileged user that does not hold the ... |
MEDIUM |
2024-10-14 |
View Details |