| Page(s) : 1 ... 61 62 63 64 65 66 67 68 69 70 [71] 72 73 74 75 76 77 78 79 80 81 ... | Result(s) : 39744 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-11-17 | CVE-2023-48078 | cve | SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the 'title' parameter. |
| 9.8 | 2023-11-16 | CVE-2023-6014 | cve | An attacker is able to arbitrarily create an account in MLflow bypassing any authentication requirment. |
| 9.8 | 2023-11-16 | CVE-2023-6016 | cve | An attacker is able to gain remote code execution on a server hosting the H2O dashboard through it's POJO model import feature. |
| 9.8 | 2023-11-16 | CVE-2023-6018 | cve | An attacker can overwrite any file on the server hosting MLflow without any authentication. |
| 9.8 | 2023-11-16 | CVE-2023-6019 | cve | A command injection existed in Ray's cpu_profile URL parameter allowing attackers to execute os commands on the system running the ray dashboard remotely without authentica... |
| 9.8 | 2023-11-16 | CVE-2023-47213 | cve | First Corporation's DVRs use a hard-coded password, which may allow a remote unauthenticated attacker to rewrite or obtain the configuration information of the affected dev... |
| 9.8 | 2023-11-16 | CVE-2023-47674 | cve | Missing authentication for critical function vulnerability in First Corporation's DVRs allows a remote unauthenticated attacker to rewrite or obtain the configuration infor... |
| 9.8 | 2023-11-16 | CVE-2021-35437 | cve | SQL injection vulnerability in LMXCMS v.1.4 allows attacker to execute arbitrary code via the TagsAction.class. |
| 9.8 | 2023-11-16 | CVE-2023-47003 | cve | An issue in RedisGraph v.2.12.10 allows an attacker to execute arbitrary code and cause a denial of service via a crafted string in DataBlock_ItemIsDeleted. |
| 9.1 | 2023-11-15 | CVE-2023-48224 | cve | Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in a runtime environment, and the enforcement of privacy regulations i... |
| 9.8 | 2023-11-15 | CVE-2023-41442 | cve | An issue in Kloudq Technologies Limited Tor Equip 1.0, Tor Loco Mini 1.0 through 3.1 allows a remote attacker to execute arbitrary code via a crafted request to the MQTT component. |
| 9.9 | 2023-11-15 | CVE-2023-48365 | cve | Qlik Sense Enterprise for Windows before August 2023 Patch 2 allows unauthenticated remote code execution, aka QB-21683. Due to improper validation of HTTP headers, a remote att... |
| 9.8 | 2023-11-15 | CVE-2023-5245 | cve | FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory. When creating... |
| 9.8 | 2023-11-15 | CVE-2023-47445 | cve | Pre-School Enrollment version 1.0 is vulnerable to SQL Injection via the username parameter in preschool/admin/ page. |
| 9.8 | 2023-11-15 | CVE-2023-43979 | cve | ETS Soft ybc_blog before v4.4.0 was discovered to contain a SQL injection vulnerability via the component Ybc_blogBlogModuleFrontController::getPosts(). |
| 9.8 | 2023-11-15 | CVE-2023-47308 | cve | In the module "Newsletter Popup PRO with Voucher/Coupon code" (newsletterpop) before version 2.6.1 from Active Design for PrestaShop, a guest can perform SQL injection in affect... |
| 9.1 | 2023-11-15 | CVE-2023-47678 | cve | An improper access control vulnerability exists in RT-AC87U all versions. An attacker may read or write files that are not intended to be accessed by connecting to a target devi... |
| 9.8 | 2023-11-15 | CVE-2023-39335 | cve | A security vulnerability has been identified in EPMM Versions 11.10, 11.9 and 11.8 and older allowing an unauthenticated threat actor to impersonate any existing user during the... |
| 9.1 | 2023-11-15 | CVE-2023-39337 | cve | A security vulnerability in EPMM Versions 11.10, 11.9 and 11.8 older allows a threat actor with knowledge of an enrolled device identifier to access and extract sensitive inform... |
| 9.8 | 2023-11-14 | CVE-2023-34060 | cve | VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgrade... |
| Page(s) : 1 ... 61 62 63 64 65 66 67 68 69 70 [71] 72 73 74 75 76 77 78 79 80 81 ... | Result(s) : 39744 |
