| Page(s) : 1 ... 39 40 41 42 43 44 45 46 47 48 [49] 50 51 52 53 54 55 56 57 58 59 ... | Result(s) : 89968 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.2 | 2024-01-30 | CVE-2023-5372 | cve | The post-authentication command injection vulnerability in Zyxel NAS326 firmware versions through V5.21(AAZF.15)C0 and NAS542 firmware versions through V5.21(ABAG.12)C0 could al... |
| 7.8 | 2024-01-30 | CVE-2024-22938 | cve | Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php component. |
| 7.1 | 2024-01-30 | CVE-2024-21840 | cve | Incorrect Default Permissions vulnerability in Hitachi Storage Plug-in for VMware vCenter allows local users to read and write specific files. This issue affects Hitachi Storag... |
| 7.5 | 2024-01-29 | CVE-2024-23334 | cve | aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. When using aiohttp as a web server and configuring static routes, it is necessary to specify the ... |
| 7.5 | 2024-01-29 | CVE-2024-1017 | cve | A vulnerability was found in Gabriels FTP Server 1.2. It has been rated as problematic. This issue affects some unknown processing. The manipulation of the argument USERNAME lea... |
| 7.8 | 2024-01-29 | CVE-2024-23940 | cve | Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products, version 6.0.2092 and below is vulnerable to a DLL hijacking/proxying vulnerabili... |
| 7.5 | 2024-01-29 | CVE-2023-51842 | cve | An algorithm-downgrade issue was discovered in Ylianst MeshCentral 1.1.16. |
| 7.2 | 2024-01-29 | CVE-2024-24139 | cve | Sourcecodester Login System with Email Verification 1.0 allows SQL Injection via the 'user' parameter. |
| 7.2 | 2024-01-29 | CVE-2024-24140 | cve | Sourcecodester Daily Habit Tracker App 1.0 allows SQL Injection via the parameter 'tracker.' |
| 7.2 | 2024-01-29 | CVE-2023-49038 | cve | Command injection in the ping utility on Buffalo LS210D 1.78-0.03 allows a remote authenticated attacker to inject arbitrary commands onto the NAS as root. |
| 7.5 | 2024-01-29 | CVE-2023-4550 | cve | Improper Input Validation, Files or Directories Accessible to External Parties vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An unauthentica... |
| 8.8 | 2024-01-29 | CVE-2023-4551 | cve | Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows OS Command Injection. The AppBuilder's Scheduler functionality that facilitates cre... |
| 7.1 | 2024-01-29 | CVE-2023-4552 | cve | Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An authenticated AppBuilder user with the ability to create or manag... |
| 7.4 | 2024-01-29 | CVE-2023-40548 | cve | A buffer overflow was found in Shim in the 32-bit system. The overflow happens due to an addition operation involving a user-controlled value parsed from the PE binary being use... |
| 7.1 | 2024-01-29 | CVE-2023-6279 | cve | The Woostify Sites Library WordPress plugin before 1.4.8 does not have authorisation in an AJAX action, allowing any authenticated users, such as subscriber to update arbitrary ... |
| 8.8 | 2024-01-29 | CVE-2023-6390 | cve | The WordPress Users WordPress plugin through 1.4 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them ... |
| 8.8 | 2024-01-29 | CVE-2023-6391 | cve | The Custom User CSS WordPress plugin through 0.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them ... |
| 8.8 | 2024-01-29 | CVE-2023-6946 | cve | The Autotitle for WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them ... |
| 8.8 | 2024-01-29 | CVE-2023-7074 | cve | The WP SOCIAL BOOKMARK MENU WordPress plugin through 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin chan... |
| 7.5 | 2024-01-29 | CVE-2023-7204 | cve | The WP STAGING WordPress Backup plugin before 3.2.0 allows access to cache files during the cloning process which provides |
| Page(s) : 1 ... 39 40 41 42 43 44 45 46 47 48 [49] 50 51 52 53 54 55 56 57 58 59 ... | Result(s) : 89968 |
