| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 272316 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-04-26 | CVE-2024-32880 | cve | pyload is an open-source Download Manager written in pure Python. An authenticated user can change the download folder and upload a crafted template to the specified folder lead... |
| N/A | 2024-04-26 | CVE-2024-32884 | cve | gitoxide is a pure Rust implementation of Git. `gix-transport` does not check the username part of a URL for text that the external `ssh` program would interpret as an option. A... |
| N/A | 2024-04-26 | CVE-2024-33342 | cve | D-Link DIR-822+ V1.0.5 was found to contain a command injection in SetPlcNetworkpwd function of prog.cgi, which allows remote attackers to execute arbitrary commands via shell. |
| N/A | 2024-04-26 | CVE-2024-33343 | cve | D-Link DIR-822+ V1.0.5 was found to contain a command injection in ChgSambaUserSettings function of prog.cgi, which allows remote attackers to execute arbitrary commands via shell. |
| N/A | 2024-04-26 | CVE-2024-33344 | cve | D-Link DIR-822+ V1.0.5 was found to contain a command injection in ftext function of upload_firmware.cgi, which allows remote attackers to execute arbitrary commands via shell. |
| N/A | 2024-04-26 | CVE-2024-4235 | cve | A vulnerability classified as problematic was found in Netgear DG834Gv5 1.6.01.34. This vulnerability affects unknown code of the component Web Management Interface. The manipul... |
| N/A | 2024-04-26 | CVE-2024-4236 | cve | A vulnerability, which was classified as critical, has been found in Tenda AX1803 1.0.0.1. This issue affects the function formSetSysToolDDNS of the file /goform/SetDDNSCfg. The... |
| N/A | 2024-04-26 | CVE-2024-28325 | cve | Asus RT-N12+ B1 router stores credentials in cleartext, which could allow local attackers to obtain unauthorized access and modify router settings. |
| N/A | 2024-04-26 | CVE-2024-28327 | cve | Asus RT-N12+ B1 router stores user passwords in plaintext, which could allow local attackers to obtain unauthorized access and modify router settings. |
| N/A | 2024-04-26 | CVE-2024-4237 | cve | A vulnerability, which was classified as critical, was found in Tenda AX1806 1.0.0.1. Affected is the function R7WebsSecurityHandler of the file /goform/execCommand. The manipul... |
| N/A | 2024-04-26 | CVE-2022-48611 | cve | A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.4 for Windows. A local attacker may be able to elevate their privileges. |
| N/A | 2024-04-26 | CVE-2023-26603 | cve | JumpCloud Agent before 1.178.0 Creates a Temporary File in a Directory with Insecure Permissions. This allows privilege escalation to SYSTEM via a repair action in the installer. |
| N/A | 2024-04-26 | CVE-2024-25343 | cve | Tenda N300 F3 router vulnerability allows users to bypass intended security policy and create weak passwords. |
| N/A | 2024-04-26 | CVE-2024-28326 | cve | Incorrect Access Control in Asus RT-N12+ B1 routers allows local attackers to obtain root terminal access via the the UART interface. |
| N/A | 2024-04-26 | CVE-2024-4238 | cve | A vulnerability has been found in Tenda AX1806 1.0.0.1 and classified as critical. Affected by this vulnerability is the function formSetDeviceName of the file /goform/SetOnline... |
| N/A | 2024-04-26 | CVE-2024-31502 | cve | An issue in Insurance Management System v.1.0.0 and before allows a remote attacker to escalate privileges via a crafted POST request to /admin/core/new_staff. |
| N/A | 2024-04-26 | CVE-2024-31601 | cve | An issue in Beijing Panabit Network Software Co., Ltd Panalog big data analysis platform v. 20240323 and before allows attackers to execute arbitrary code via the exportpdf.php ... |
| N/A | 2024-04-26 | CVE-2024-32878 | cve | Llama.cpp is LLM inference in C/C++. There is a use of uninitialized heap variable vulnerability in gguf_init_from_file, the code will free this uninitialized variable later. In... |
| N/A | 2024-04-26 | CVE-2024-32881 | cve | Danswer is the AI Assistant connected to company's docs, apps, and people. Danswer is vulnerable to unauthorized access to GET/SET of Slack Bot Tokens. Anyone with network ... |
| N/A | 2024-04-26 | CVE-2024-32883 | cve | MCUboot is a secure bootloader for 32-bits microcontrollers. MCUboot uses a TLV (tag-length-value) structure to represent the meta data associated with an image. The TLVs thems... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 272316 |
