| Page(s) : 1 ... 1048 1049 1050 1051 1052 1053 1054 1055 1056 1057 [1058] 1059 1060 1061 1062 1063 1064 1065 1066 1067 1068 ... | Result(s) : 301060 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-03 | CVE-2024-34897 | cve | Nedis SmartLife android app v1.4.0 was discovered to contain an API key disclosure vulnerability. |
| N/A | 2025-02-03 | CVE-2024-44449 | cve | Cross Site Scripting vulnerability in Quorum onQ OS v.6.0.0.5.2064 allows a remote attacker to obtain sensitive information via the msg parameter in the Login page. |
| N/A | 2025-02-03 | CVE-2024-56898 | cve | Broken access control vulnerability in Geovision GV-ASWeb with version v6.1.0.0 or less. This vulnerability allows low privilege users perform actions that they aren't auth... |
| N/A | 2025-02-03 | CVE-2024-56901 | cve | A Cross-Site Request Forgery (CSRF) vulnerability in Geovision GV-ASWeb application with the version 6.1.1.0 or less that allows attackers to arbitrarily create Administrator ac... |
| N/A | 2025-02-03 | CVE-2024-56902 | cve | Information disclosure vulnerability in Geovision GV-ASManager web application with the version v6.1.0.0 or less, which discloses account information, including cleartext password. |
| N/A | 2025-02-03 | CVE-2024-56903 | cve | Geovision GV-ASWeb with the version 6.1.1.0 or less allows attackers to modify POST request method with the GET against critical functionalities, such as account management. Thi... |
| N/A | 2025-02-03 | CVE-2024-57451 | cve | ChestnutCMS |
| N/A | 2025-02-03 | CVE-2025-22918 | cve | Polycom RealPresence Group 500 |
| N/A | 2025-02-03 | CVE-2025-24370 | cve | Django-Unicorn adds modern reactive component functionality to Django templates. Affected versions of Django-Unicorn are vulnerable to python class pollution vulnerability. The ... |
| 7.5 | 2025-02-03 | CVE-2025-24899 | cve | reNgine is an automated reconnaissance framework for web applications. A vulnerability was discovered in reNgine, where **an insider attacker with any role** (such as Auditor, P... |
| N/A | 2025-02-03 | CVE-2025-24959 | cve | zx is a tool for writing better scripts. An attacker with control over environment variable values can inject unintended environment variables into `process.env`. This can lead ... |
| N/A | 2025-02-03 | CVE-2025-24960 | cve | Jellystat is a free and open source Statistics App for Jellyfin. In affected versions Jellystat is directly using a user input in the route(s). This can lead to Path Traversal V... |
| N/A | 2025-02-03 | CVE-2025-24961 | cve | org.gaul S3Proxy implements the S3 API and proxies requests. Users of the filesystem and filesystem-nio2 storage backends could unintentionally expose local files to users. This... |
| 8.8 | 2025-02-03 | CVE-2025-24962 | cve | reNgine is an automated reconnaissance framework for web applications. In affected versions a user can inject commands via the nmap_cmd parameters. This issue has been addressed... |
| N/A | 2025-02-03 | CVE-2024-35177 | cve | Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerize... |
| N/A | 2025-02-03 | CVE-2024-47770 | cve | Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerize... |
| N/A | 2025-02-03 | CVE-2025-22129 | cve | Tuleap is an Open Source Suite to improve management of software developments and collaboration. In affected versions an unauthorized user might get access to restricted informa... |
| N/A | 2025-02-03 | CVE-2025-23210 | cve | phpoffice/phpspreadsheet is a pure PHP library for reading and writing spreadsheet files. Affected versions have been found to have a Bypass of the Cross-site Scripting (XSS) sa... |
| N/A | 2025-02-03 | CVE-2025-24029 | cve | Tuleap is an Open Source Suite to improve management of software developments and collaboration. Users (possibly anonymous ones if the widget is used in the dashboard of a publi... |
| N/A | 2025-02-03 | CVE-2025-24371 | cve | CometBFT is a distributed, Byzantine fault-tolerant, deterministic state machine replication engine. In the `blocksync` protocol peers send their `base` and `latest` heights whe... |
| Page(s) : 1 ... 1048 1049 1050 1051 1052 1053 1054 1055 1056 1057 [1058] 1059 1060 1061 1062 1063 1064 1065 1066 1067 1068 ... | Result(s) : 301060 |
