| Page(s) : 1 ... 56 57 58 59 60 61 62 63 64 65 [66] 67 68 69 70 71 72 73 74 75 76 ... | Result(s) : 39744 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-11-29 | CVE-2023-23325 | cve | Zumtobel Netlink CCD Onboard 3.74 - Firmware 3.80 was discovered to contain a command injection vulnerability via the NetHostname parameter. |
| 9.1 | 2023-11-29 | CVE-2023-46886 | cve | Dreamer CMS before version 4.0.1 is vulnerable to Directory Traversal. Background template management allows arbitrary modification of the template file, allowing system sensiti... |
| 9.8 | 2023-11-29 | CVE-2023-47462 | cve | Insecure Permissions vulnerability in GL.iNet AX1800 v.3.215 and before allows a remote attacker to execute arbitrary code via the file sharing function. |
| 9.8 | 2023-11-28 | CVE-2023-48193 | cve | Insecure Permissions vulnerability in JumpServer GPLv3 v.3.8.0 allows a remote attacker to execute arbitrary code via bypassing the command filtering function. |
| 9.8 | 2023-11-28 | CVE-2023-49313 | cve | A dylib injection vulnerability in XMachOViewer 0.04 allows attackers to compromise integrity. By exploiting this, unauthorized code can be injected into the product's proc... |
| 9.8 | 2023-11-28 | CVE-2023-41264 | cve | Netwrix Usercube before 6.0.215, in certain misconfigured on-premises installations, allows authentication bypass on deployment endpoints, leading to privilege escalation. This ... |
| 9.8 | 2023-11-28 | CVE-2023-3368 | cve | Command injection in `/main/webservices/additional_webservices.php` in Chamilo LMS |
| 9.8 | 2023-11-28 | CVE-2023-3533 | cve | Path traversal in file upload functionality in `/main/webservices/additional_webservices.php` in Chamilo LMS |
| 9.8 | 2023-11-28 | CVE-2023-3545 | cve | Improper sanitisation in `main/inc/lib/fileUpload.lib.php` in Chamilo LMS |
| 9.8 | 2023-11-28 | CVE-2023-48022 | cve | Anyscale Ray 2.6.3 and 2.8.0 allows a remote attacker to execute arbitrary code via the job submission API. NOTE: the vendor's position is that this report is irrelevant be... |
| 9.1 | 2023-11-28 | CVE-2023-48023 | cve | Anyscale Ray 2.6.3 and 2.8.0 allows /log_proxy SSRF. NOTE: the vendor's position is that this report is irrelevant because Ray, as stated in its documentation, is not inten... |
| 9.8 | 2023-11-28 | CVE-2023-47503 | cve | An issue in jflyfox jfinalCMS v.5.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp component in the template management module. |
| 9.8 | 2023-11-27 | CVE-2023-46349 | cve | In the module "Product Catalog (CSV, Excel) Export/Update" (updateproducts) < 3.8.5 from MyPrestaModules for PrestaShop, a guest can perform SQL injection. The method `productsU... |
| 9.8 | 2023-11-27 | CVE-2023-46480 | cve | An issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function. |
| 9.8 | 2023-11-27 | CVE-2023-48188 | cve | SQL injection vulnerability in PrestaShop opartdevis v.4.5.18 thru v.4.6.12 allows a remote attacker to execute arbitrary code via a crafted script to the getModuleTranslation f... |
| 9.8 | 2023-11-27 | CVE-2022-41951 | cve | OroPlatform is a PHP Business Application Platform (BAP) designed to make development of custom business applications easier and faster. Path Traversal is possible in `Oro\Bundl... |
| 9.8 | 2023-11-27 | CVE-2023-49044 | cve | Stack Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the ssid parameter in the function form_fast_setting_wifi_set. |
| 9.8 | 2023-11-27 | CVE-2023-49043 | cve | Buffer Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the wpapsk_crypto parameter in the function fromSetWirelessRepeat. |
| 9.8 | 2023-11-27 | CVE-2023-49046 | cve | Stack Overflow vulnerability in Tenda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the devName parameter in the function formAddMacfilterRule. |
| 9.8 | 2023-11-27 | CVE-2023-41998 | cve | Arcserve UDP prior to 9.2 contained a vulnerability in the com.ca.arcflash.rps.webservice.RPSService4CPMImpl interface. A routine exists that allows an attacker to upload and ex... |
| Page(s) : 1 ... 56 57 58 59 60 61 62 63 64 65 [66] 67 68 69 70 71 72 73 74 75 76 ... | Result(s) : 39744 |
