| Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... | Result(s) : 8019 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2023-10-27 | CVE-2023-40134 | cve | In isFullScreen of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no addi... |
| 3.3 | 2023-10-27 | CVE-2023-40135 | cve | In applyCustomDescription of SaveUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure wi... |
| 3.3 | 2023-10-27 | CVE-2023-40136 | cve | In setHeader of DialogFillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no a... |
| 3.3 | 2023-10-27 | CVE-2023-40137 | cve | In multiple functions of DialogFillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure ... |
| 3.3 | 2023-10-27 | CVE-2023-40138 | cve | In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional... |
| 3.3 | 2023-10-25 | CVE-2023-41960 | cve | The vulnerability allows an unprivileged(untrusted) third-party application to interact with a content-provider unsafely exposed by the Android Agent application, potentially mo... |
| 3.3 | 2023-10-25 | CVE-2023-5752 | cve | When installing a package from a Mercurial VCS URL (ie "pip install hg+...") with pip prior to v23.3, the specified Mercurial revision could be used to inject arbitrary confi... |
| 3.3 | 2023-10-25 | CVE-2023-40405 | cve | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.1. An app may be able to read sensitive location infor... |
| 3.3 | 2023-10-25 | CVE-2023-42857 | cve | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. An app may be able to acc... |
| 2.7 | 2023-10-19 | CVE-2023-45809 | cve | Wagtail is an open source content management system built on Django. A user with a limited-permission editor account for the Wagtail admin can make a direct URL request to the a... |
| 3.6 | 2023-10-18 | CVE-2023-45145 | cve | Redis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions to the user-provided configuration. If... |
| 3.7 | 2023-10-18 | CVE-2023-38546 | cve | This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met. libcurl performs transfers. In its AP... |
| 3.7 | 2023-10-17 | CVE-2023-22025 | cve | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition, product of Oracle Java SE (component: Hotspot). Supported versions that are affe... |
| 2.4 | 2023-10-17 | CVE-2023-22074 | cve | Vulnerability in the Oracle Database Sharding component of Oracle Database Server. Supported versions that are affected are 19.3-19.20 and 21.3-21.11. Easily exploitable vulne... |
| 2.4 | 2023-10-17 | CVE-2023-22075 | cve | Vulnerability in the Oracle Database Sharding component of Oracle Database Server. Supported versions that are affected are 19.3-19.20 and 21.3-21.11. Easily exploitable vulne... |
| 2.7 | 2023-10-17 | CVE-2023-22113 | cve | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.33 and prior. Easily exploitab... |
| 3.1 | 2023-10-17 | CVE-2023-22128 | cve | Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability a... |
| 2.7 | 2023-10-17 | CVE-2023-4089 | cve | On affected Wago products an remote attacker with administrative privileges can access files to which he has already access to through an undocumented local file inclusion. This... |
| 2.3 | 2023-10-17 | CVE-2023-45152 | cve | Engelsystem is a shift planning system for chaos events. A Blind SSRF in the "Import schedule" functionality makes it possible to perform a port scan against the local environme... |
| 2.8 | 2023-10-17 | CVE-2023-45659 | cve | Engelsystem is a shift planning system for chaos events. If a users' password is compromised and an attacker gained access to a users' account, i.e., logged in and ob... |
| Page(s) : 1 2 3 4 5 6 7 [8] 9 10 11 12 13 14 15 16 17 18 ... | Result(s) : 8019 |
