Page(s) : 1 ... 24 25 26 27 28 29 30 31 32 33 [34] 35 36 37 38 39 40 41 42 43 44 ... | Result(s) : 89852 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
7.5 | 2024-02-05 | CVE-2024-24262 | cve | media-server v1.0.0 was discovered to contain a Use-After-Free (UAF) vulnerability via the sip_uac_stop_timer function at /uac/sip-uac-transaction.c. |
7.5 | 2024-02-05 | CVE-2024-24263 | cve | Lotos WebServer v0.1.1 was discovered to contain a Use-After-Free (UAF) vulnerability via the response_append_status_line function at /lotos/src/response.c. |
7.5 | 2024-02-05 | CVE-2024-24265 | cve | gpac v2.2.1 was discovered to contain a memory leak via the dst_props variable in the gf_filter_pid_merge_properties_internal function. |
7.5 | 2024-02-05 | CVE-2024-24266 | cve | gpac v2.2.1 was discovered to contain a Use-After-Free (UAF) vulnerability via the dasher_configure_pid function at /src/filters/dasher.c. |
7.5 | 2024-02-05 | CVE-2024-24267 | cve | gpac v2.2.1 was discovered to contain a memory leak via the gfio_blob variable in the gf_fileio_from_blob function. |
8.8 | 2024-02-05 | CVE-2024-22567 | cve | File Upload vulnerability in MCMS 5.3.5 allows attackers to upload arbitrary files via crafted POST request to /ms/file/upload.do. |
7.5 | 2024-02-05 | CVE-2023-27318 | cve | StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service (DoS) vulnerability. A successful exploit could lead to a ... |
7.5 | 2024-02-05 | CVE-2023-50781 | cve | A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confid... |
7.5 | 2024-02-05 | CVE-2023-50782 | cve | A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lea... |
8 | 2024-02-05 | CVE-2024-1052 | cve | Boundary and Boundary Enterprise (“Boundary”) is vulnerable to session hijacking through TLS certificate tampering. An attacker with privileges to enumerate active or pending se... |
7.2 | 2024-02-05 | CVE-2023-6635 | cve | The EditorsKit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation on the 'import_styles' function in versions up to, and ... |
8.8 | 2024-02-05 | CVE-2023-6700 | cve | The Cookie Information | Free GDPR Consent Solution plugin for WordPress is vulnerable to arbitrary option updates due to a missing capability check on its AJAX request handler ... |
8.8 | 2024-02-05 | CVE-2023-6846 | cve | The File Manager Pro plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 8.3.4 via the mk_check_filemanager_php_syntax AJAX functio... |
7.2 | 2024-02-05 | CVE-2023-6925 | cve | The Unlimited Addons for WPBakery Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'importZipFile... |
8.8 | 2024-02-05 | CVE-2023-6985 | cve | The 10Web AI Assistant – AI content writing assistant plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the install_pl... |
8.8 | 2024-02-05 | CVE-2023-6996 | cve | The Display custom fields in the frontend – Post and User Profile Fields plugin for WordPress is vulnerable to Code Injection via the plugin's vg_display_data shortcode in ... |
7.5 | 2024-02-05 | CVE-2023-7014 | cve | The Author Box, Guest Author and Co-Authors for Your Posts – Molongui plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, ... |
7.2 | 2024-02-05 | CVE-2024-0221 | cve | The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.8.19 via the rename_... |
7.5 | 2024-02-05 | CVE-2024-0324 | cve | The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to unauthorized modification of data due to a m... |
8.8 | 2024-02-05 | CVE-2024-0428 | cve | The Index Now plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.3. This is due to missing or incorrect nonce validation ... |
Page(s) : 1 ... 24 25 26 27 28 29 30 31 32 33 [34] 35 36 37 38 39 40 41 42 43 44 ... | Result(s) : 89852 |