| Page(s) : 1 ... 14 15 16 17 18 19 20 21 22 23 [24] 25 26 27 28 29 30 31 32 33 34 ... | Result(s) : 34024 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-01-19 | CVE-2023-46351 | cve | In the module mib < 1.6.1 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The methods `mib::getManufacturersByCategory()` has sensitive SQL calls that can be... |
| 9.8 | 2024-01-19 | CVE-2023-50028 | cve | In the module "Sliding cart block" (blockslidingcart) up to version 2.3.8 from PrestashopModules.eu for PrestaShop, a guest can perform SQL injection. |
| 9.8 | 2024-01-19 | CVE-2023-50030 | cve | In the module "Jms Setting" (jmssetting) from Joommasters for PrestaShop, a guest can perform SQL injection in versions |
| 9.1 | 2024-01-19 | CVE-2023-51947 | cve | Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication. |
| 9.8 | 2024-01-19 | CVE-2024-0712 | cve | A vulnerability was found in Byzoro Smart S150 Management Platform V31R02B15. It has been classified as critical. Affected is an unknown function of the file /useratte/inc/usera... |
| 9.8 | 2024-01-19 | CVE-2023-5716 | cve | ASUS Armoury Crate has a vulnerability in arbitrary file write and allows remote attackers to access or modify arbitrary files by sending specific HTTP requests without permission. |
| 9.8 | 2024-01-18 | CVE-2024-22212 | cve | Nextcloud Global Site Selector is a tool which allows you to run multiple small Nextcloud instances and redirect users to the right server. A problem in the password verificatio... |
| 9.8 | 2024-01-18 | CVE-2024-22419 | cve | Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. The `concat` built-in can write over the bounds of the memory buffer that was allocated for it and ... |
| 9.8 | 2024-01-18 | CVE-2024-22415 | cve | jupyter-lsp is a coding assistance tool for JupyterLab (code navigation + hover suggestions + linters + autocompletion + rename) using Language Server Protocol. Installations of... |
| 9.9 | 2024-01-18 | CVE-2023-40051 | cve | This issue affects Progress Application Server (PAS) for OpenEdge in versions 11.7 prior to 11.7.18, 12.2 prior to 12.2.13, and innovation releases prior to 12.8.0. An attacker ... |
| 9.8 | 2024-01-18 | CVE-2023-5806 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mergen Software Quality Management System allows SQL Injection.Th... |
| 9.1 | 2024-01-18 | CVE-2024-22317 | cve | IBM App Connect Enterprise 11.0.0.1 through 11.0.0.24 and 12.0.1.0 through 12.0.11.0 could allow a remote attacker to obtain sensitive information or cause a denial of service d... |
| 9.8 | 2024-01-18 | CVE-2024-0655 | cve | A vulnerability has been found in Novel-Plus 4.3.0-RC1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /novel/bookSetting/list... |
| 9.8 | 2024-01-18 | CVE-2023-6816 | cve | A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to a... |
| 9.8 | 2024-01-17 | CVE-2024-0648 | cve | A vulnerability has been found in Yunyou CMS up to 2.2.6 and classified as critical. This vulnerability affects unknown code of the file /app/index/controller/Common.php. The ma... |
| 9.8 | 2024-01-17 | CVE-2024-0649 | cve | A vulnerability was found in ZhiHuiYun up to 4.4.13 and classified as critical. This issue affects the function download_network_image of the file /app/Http/Controllers/ImageCon... |
| 9.8 | 2024-01-17 | CVE-2023-44077 | cve | Studio Network Solutions ShareBrowser before 7.0 on macOS mishandles signature verification, aka PMP-2636. |
| 9.8 | 2024-01-17 | CVE-2022-36418 | cve | Missing Authorization vulnerability in Vagary Digital HREFLANG Tags Lite.This issue affects HREFLANG Tags Lite: from n/a through 2.0.0. |
| 9.8 | 2024-01-17 | CVE-2024-20272 | cve | A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote attacker to upload arbitrary files to an affected system a... |
| 9.8 | 2024-01-17 | CVE-2022-41786 | cve | Missing Authorization vulnerability in WP Job Portal WP Job Portal – A Complete Job Board.This issue affects WP Job Portal – A Complete Job Board: from n/a through 2.0.1. |
| Page(s) : 1 ... 14 15 16 17 18 19 20 21 22 23 [24] 25 26 27 28 29 30 31 32 33 34 ... | Result(s) : 34024 |
