| Page(s) : 1 ... 13 14 15 16 17 18 19 20 21 22 [23] 24 25 26 27 28 29 30 31 32 33 ... | Result(s) : 39744 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-01-19 | CVE-2024-22211 | cve | FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to ... |
| 9.8 | 2024-01-19 | CVE-2024-0733 | cve | A vulnerability was found in Smsot up to 2.12. It has been classified as critical. Affected is an unknown function of the file /api.php of the component HTTP POST Request Handle... |
| 9.8 | 2024-01-19 | CVE-2024-0734 | cve | A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /get.php. The manipulatio... |
| 9.8 | 2024-01-19 | CVE-2024-0735 | cve | A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. Affected by this issue is the function exec of the file ... |
| 9.8 | 2024-01-19 | CVE-2024-23679 | cve | Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. An remote and unauthenticated attacker can use prior sessions due to the lack of invalidating sess... |
| 9.8 | 2024-01-19 | CVE-2024-0738 | cve | A vulnerability, which was classified as critical, has been found in ???? mldong 1.0. This issue affects the function ExpressionEngine of the file com/mldong/modules/wf/engine/m... |
| 9.8 | 2024-01-19 | CVE-2024-0739 | cve | A vulnerability, which was classified as critical, was found in Hecheng Leadshop up to 1.4.20. Affected is an unknown function of the file /web/leadshop.php. The manipulation of... |
| 9.1 | 2024-01-19 | CVE-2024-23687 | cve | Hard-coded credentials in FOLIO mod-data-export-spring versions before 1.5.4 and from 2.0.0 to 2.0.2 allows unauthenticated users to access critical APIs, modify user data, modi... |
| 9.8 | 2024-01-19 | CVE-2022-40700 | cve | Server-Side Request Forgery (SSRF) vulnerability in Montonio Montonio for WooCommerce, Wpopal Wpopal Core Features, AMO for WP – Membership Management ArcStone wp-amo, Long Watc... |
| 9.8 | 2024-01-19 | CVE-2024-0714 | cve | A vulnerability was found in MiczFlor RPi-Jukebox-RFID up to 2.5.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file userScripts.p... |
| 9.8 | 2024-01-19 | CVE-2023-27168 | cve | An arbitrary file upload vulnerability in Xpand IT Write-back Manager v2.3.1 allows attackers to execute arbitrary code via a crafted jsp file. |
| 9.8 | 2024-01-19 | CVE-2023-43985 | cve | SunnyToo stblogsearch up to v1.0.0 was discovered to contain a SQL injection vulnerability via the StBlogSearchClass::prepareSearch component. |
| 9.8 | 2024-01-19 | CVE-2023-46351 | cve | In the module mib < 1.6.1 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The methods `mib::getManufacturersByCategory()` has sensitive SQL calls that can be... |
| 9.8 | 2024-01-19 | CVE-2023-50028 | cve | In the module "Sliding cart block" (blockslidingcart) up to version 2.3.8 from PrestashopModules.eu for PrestaShop, a guest can perform SQL injection. |
| 9.8 | 2024-01-19 | CVE-2023-50030 | cve | In the module "Jms Setting" (jmssetting) from Joommasters for PrestaShop, a guest can perform SQL injection in versions |
| 9.1 | 2024-01-19 | CVE-2023-51947 | cve | Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication. |
| 9.8 | 2024-01-19 | CVE-2024-0712 | cve | A vulnerability was found in Byzoro Smart S150 Management Platform V31R02B15. It has been classified as critical. Affected is an unknown function of the file /useratte/inc/usera... |
| 9.8 | 2024-01-19 | CVE-2023-5716 | cve | ASUS Armoury Crate has a vulnerability in arbitrary file write and allows remote attackers to access or modify arbitrary files by sending specific HTTP requests without permission. |
| 9.8 | 2024-01-18 | CVE-2024-22212 | cve | Nextcloud Global Site Selector is a tool which allows you to run multiple small Nextcloud instances and redirect users to the right server. A problem in the password verificatio... |
| 9.8 | 2024-01-18 | CVE-2024-22419 | cve | Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. The `concat` built-in can write over the bounds of the memory buffer that was allocated for it and ... |
| Page(s) : 1 ... 13 14 15 16 17 18 19 20 21 22 [23] 24 25 26 27 28 29 30 31 32 33 ... | Result(s) : 39744 |
