| Page(s) : 1 ... 12 13 14 15 16 17 18 19 20 21 [22] 23 24 25 26 27 28 29 30 31 32 ... | Result(s) : 39741 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-01-22 | CVE-2024-23752 | cve | GenerateSDFPipeline in synthetic_dataframe in PandasAI (aka pandas-ai) through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDF... |
| 9.8 | 2024-01-22 | CVE-2024-23771 | cve | darkhttpd before 1.15 uses strcmp (which is not constant time) to verify authentication, which makes it easier for remote attackers to bypass authentication via a timing side ch... |
| 9.8 | 2024-01-21 | CVE-2024-23730 | cve | The OpenAPI and ChatGPT plugin loaders in LlamaHub (aka llama-hub) before 0.0.67 allow attackers to execute arbitrary code because safe_load is not used for YAML. |
| 9.8 | 2024-01-21 | CVE-2024-23731 | cve | The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument. |
| 9.8 | 2024-01-21 | CVE-2024-0769 | cve | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-859 1.06B01. It has been rated as critical. Affected by this issue is some unknown functionality of the f... |
| 9.8 | 2024-01-20 | CVE-2021-31314 | cve | File upload vulnerability in ejinshan v8+ terminal security system allows attackers to upload arbitrary files to arbitrary locations on the server. |
| 9.8 | 2024-01-20 | CVE-2023-51892 | cve | An issue in weaver e-cology v.10.0.2310.01 allows a remote attacker to execute arbitrary code via a crafted script to the FrameworkShellController component. |
| 9.8 | 2024-01-20 | CVE-2023-51927 | cve | YonBIP v3_23.05 was discovered to contain a SQL injection vulnerability via the com.yonyou.hrcloud.attend.web.AttendScriptController.runScript() method. |
| 9.8 | 2024-01-20 | CVE-2023-51928 | cve | An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction() method of YonBIP v3_23.05 allows attackers to execute arbitrary cod... |
| 9.8 | 2024-01-20 | CVE-2023-51906 | cve | An issue in yonyou YonBIP v3_23.05 allows a remote attacker to execute arbitrary code via a crafted script to the ServiceDispatcherServlet uap.framework.rc.itf.IResourceManager ... |
| 9.8 | 2024-01-20 | CVE-2023-51924 | cve | An arbitrary file upload vulnerability in the uap.framework.rc.itf.IResourceManager interface of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a craft... |
| 9.8 | 2024-01-20 | CVE-2023-51925 | cve | An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction() method of YonBIP v3_23.05 allows attackers to execute arbitrary cod... |
| 9.8 | 2024-01-19 | CVE-2024-0728 | cve | A vulnerability classified as problematic was found in ForU CMS up to 2020-06-23. Affected by this vulnerability is an unknown functionality of the file channel.php. The manipul... |
| 9.8 | 2024-01-19 | CVE-2024-0729 | cve | A vulnerability, which was classified as critical, has been found in ForU CMS up to 2020-06-23. Affected by this issue is some unknown functionality of the file cms_admin.php. T... |
| 9.8 | 2024-01-19 | CVE-2024-0730 | cve | A vulnerability, which was classified as critical, was found in Project Worlds Online Time Table Generator 1.0. This affects an unknown part of the file course_ajax.php. The man... |
| 9.8 | 2024-01-19 | CVE-2023-50693 | cve | An issue in Jester v.0.6.0 and before allows a remote attacker to send a malicious crafted request. |
| 9.8 | 2024-01-19 | CVE-2023-50694 | cve | An issue in dom96 HTTPbeast v.0.4.1 and before allows a remote attacker to send a malicious crafted request due to insufficient parsing in the parser.nim component. |
| 9.8 | 2024-01-19 | CVE-2024-22211 | cve | FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to ... |
| 9.8 | 2024-01-19 | CVE-2024-0733 | cve | A vulnerability was found in Smsot up to 2.12. It has been classified as critical. Affected is an unknown function of the file /api.php of the component HTTP POST Request Handle... |
| 9.8 | 2024-01-19 | CVE-2024-0734 | cve | A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /get.php. The manipulatio... |
| Page(s) : 1 ... 12 13 14 15 16 17 18 19 20 21 [22] 23 24 25 26 27 28 29 30 31 32 ... | Result(s) : 39741 |
