| Page(s) : 1 ... 14 15 16 17 18 19 20 21 22 23 [24] 25 26 27 28 29 30 31 32 33 34 ... | Result(s) : 89820 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2024-02-11 | CVE-2024-25417 | cve | flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/add_translation.php. |
| 8.8 | 2024-02-11 | CVE-2024-25418 | cve | flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/delete_menu.php. |
| 8.8 | 2024-02-11 | CVE-2024-25419 | cve | flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/update_menu.php. |
| 7.5 | 2024-02-11 | CVE-2023-52427 | cve | In OpenDDS through 3.27, there is a segmentation fault for a DataWriter with a large value of resource_limits.max_samples. NOTE: the vendor's position is that the product i... |
| 7.5 | 2024-02-10 | CVE-2024-22361 | cve | IBM Semeru Runtime 8.0.302.0 through 8.0.392.0, 11.0.12.0 through 11.0.21.0, 17.0.1.0 - 17.0.9.0, and 21.0.1.0 uses weaker than expected cryptographic algorithms that could allo... |
| 7.2 | 2024-02-10 | CVE-2023-50957 | cve | IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform unauthorized actions after obtaining encrypted data from clear text key storage. IBM X-Fo... |
| 7.8 | 2024-02-10 | CVE-2024-22313 | cve | IBM Storage Defender - Resiliency Service 2.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outboun... |
| 8.8 | 2024-02-10 | CVE-2024-0594 | cve | The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to union-based SQL Injection via the 'q' parameter of the wpas_get_users a... |
| 7.5 | 2024-02-10 | CVE-2024-21490 | cve | This affects versions of the package angular from 1.3.0. A regular expression used to split the value of the ng-srcset directive is vulnerable to super-linear runtime due to bac... |
| 8.8 | 2024-02-09 | CVE-2023-50349 | cve | Sametime is impacted by a Cross Site Request Forgery (CSRF) vulnerability. Some REST APIs in the Sametime Proxy application can allow an attacker to perform malicious actions o... |
| 7.5 | 2024-02-09 | CVE-2024-1404 | cve | A vulnerability was found in Linksys WRT54GL 4.30.18 and classified as problematic. Affected by this issue is some unknown functionality of the file /SysInfo.htm of the componen... |
| 7.5 | 2024-02-09 | CVE-2024-23322 | cve | Envoy is a high-performance edge/middle/service proxy. Envoy will crash when certain timeouts happen within the same interval. The crash occurs when the following are true: 1. h... |
| 7.5 | 2024-02-09 | CVE-2024-23324 | cve | Envoy is a high-performance edge/middle/service proxy. External authentication can be bypassed by downstream connections. Downstream clients can force invalid gRPC requests to b... |
| 7.5 | 2024-02-09 | CVE-2024-23325 | cve | Envoy is a high-performance edge/middle/service proxy. Envoy crashes in Proxy protocol when using an address type that isn’t supported by the OS. Envoy is susceptible to crashin... |
| 7.5 | 2024-02-09 | CVE-2024-23327 | cve | Envoy is a high-performance edge/middle/service proxy. When PPv2 is enabled both on a listener and subsequent cluster, the Envoy instance will segfault when attempting to craft ... |
| 7.8 | 2024-02-09 | CVE-2024-24828 | cve | pkg is tool design to bundle Node.js projects into an executables. Any native code packages built by `pkg` are written to a hardcoded directory. On unix systems, this is `/tmp/p... |
| 7.8 | 2024-02-09 | CVE-2024-25442 | cve | An issue in the HuginBase::PanoramaMemento::loadPTScript function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via parsing a crafted image. |
| 7.8 | 2024-02-09 | CVE-2024-25443 | cve | An issue in the HuginBase::ImageVariable::linkWith function of Hugin v2022.0.0 allows attackers to cause a heap-use-after-free via parsing a crafted image. |
| 7.8 | 2024-02-09 | CVE-2024-25445 | cve | Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to an assertion failure. |
| 7.8 | 2024-02-09 | CVE-2024-25446 | cve | An issue in the HuginBase::PTools::setDestImage function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via parsing a crafted image. |
| Page(s) : 1 ... 14 15 16 17 18 19 20 21 22 23 [24] 25 26 27 28 29 30 31 32 33 34 ... | Result(s) : 89820 |
