Page(s) : 1 ... 15 16 17 18 19 20 21 22 23 24 [25] 26 27 28 29 30 31 32 33 34 35 ... | Result(s) : 34024 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
9.8 | 2024-01-17 | CVE-2024-0642 | cve | Inadequate access control in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to access the application as an administrator... |
9.8 | 2024-01-17 | CVE-2024-0643 | cve | Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to upload different file ex... |
9.8 | 2024-01-17 | CVE-2021-4434 | cve | The Social Warfare plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 3.5.2 via the 'swp_url' parameter. This allows attacke... |
9.8 | 2024-01-16 | CVE-2024-22406 | cve | Shopware is an open headless commerce platform. The Shopware application API contains a search functionality which enables users to search through information stored within thei... |
9.8 | 2024-01-16 | CVE-2023-49351 | cve | A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due ... |
9.8 | 2024-01-16 | CVE-2023-52041 | cve | An issue discovered in TOTOLINK X6000R V9.4.0cu.852_B20230719 allows attackers to run arbitrary code via the sub_410118 function of the shttpd program. |
9.8 | 2024-01-16 | CVE-2024-0200 | cve | An unsafe reflection vulnerability was identified in GitHub Enterprise Server that could lead to reflection injection. This vulnerability could lead to the execution of user-con... |
9.8 | 2024-01-16 | CVE-2023-39691 | cve | An issue discovered in kodbox through 1.43 allows attackers to arbitrarily add Administrator accounts via crafted GET request. |
9.8 | 2024-01-16 | CVE-2023-52042 | cve | An issue discovered in sub_4117F8 function in TOTOLINK X6000R V9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the 'lang' parameter. |
9.8 | 2024-01-16 | CVE-2024-0603 | cve | A vulnerability classified as critical has been found in ZhiCms up to 4.0. This affects an unknown part of the file app/plug/controller/giftcontroller.php. The manipulation of t... |
9.8 | 2024-01-16 | CVE-2024-22916 | cve | In D-LINK Go-RT-AC750 v101b03, the sprintf function in the sub_40E700 function within the cgibin is susceptible to stack overflow. |
9.8 | 2024-01-16 | CVE-2023-6395 | cve | The Mock software contains a vulnerability wherein an attacker could potentially exploit privilege escalation, enabling the execution of arbitrary code with root user privileges... |
9.8 | 2024-01-16 | CVE-2024-0573 | cve | A vulnerability has been found in Totolink LR1200GB 9.1.0u.6619_B20230130 and classified as critical. Affected by this vulnerability is the function setDiagnosisCfg of the file ... |
9.8 | 2024-01-16 | CVE-2024-0574 | cve | A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130 and classified as critical. Affected by this issue is the function setParentalRules of the file /cgi-bin/cst... |
9.8 | 2024-01-16 | CVE-2024-0575 | cve | A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. It has been classified as critical. This affects the function setTracerouteCfg of the file /cgi-bin/cstecgi... |
9.8 | 2024-01-16 | CVE-2022-1609 | cve | The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it's license checking code that registers a REST API handler, allowing an un... |
9.8 | 2024-01-16 | CVE-2023-0224 | cve | The GiveWP WordPress plugin before 2.24.1 does not properly escape user input before it reaches SQL queries, which could let unauthenticated attackers perform SQL Injection attacks |
9.8 | 2024-01-16 | CVE-2023-37522 | cve | HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower has missing or insecure tags that could allow an attacker to execute a malicious script on the user's browser. |
9.8 | 2024-01-16 | CVE-2023-3211 | cve | The WordPress Database Administrator WordPress plugin through 1.0.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action avail... |
9.8 | 2024-01-16 | CVE-2024-0576 | cve | A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. It has been declared as critical. This vulnerability affects the function setIpPortFilterRules of the file ... |
Page(s) : 1 ... 15 16 17 18 19 20 21 22 23 24 [25] 26 27 28 29 30 31 32 33 34 35 ... | Result(s) : 34024 |