| Page(s) : 1 ... 97 98 99 100 101 102 103 104 105 106 [107] 108 109 110 111 112 113 114 115 116 117 ... | Result(s) : 43228 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-10-11 | CVE-2024-47331 | cve | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NinjaTeam Multi Step for Contact Form allows SQL Injection.This i... |
| 9.8 | 2024-10-11 | CVE-2024-45402 | cve | Picotls is a TLS protocol library that allows users select different crypto backends based on their use case. When parsing a spoofed TLS handshake message, picotls (specifically... |
| 9.8 | 2024-10-11 | CVE-2024-47074 | cve | DataEase is an open source data visualization analysis tool. In Dataease, the PostgreSQL data source in the data source function can customize the JDBC connection parameters and... |
| 9.8 | 2024-10-10 | CVE-2024-47167 | cve | Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to **Server-Side Request Forgery (SSRF)** in the `/queue/join` endpoint. Gradi... |
| 9.1 | 2024-10-10 | CVE-2024-9487 | cve | An improper verification of cryptographic signature vulnerability was identified in GitHub Enterprise Server that allowed SAML SSO authentication to be bypassed resulting in una... |
| 9.8 | 2024-10-10 | CVE-2024-9814 | cve | A vulnerability, which was classified as critical, was found in Codezips Pharmacy Management System 1.0. Affected is an unknown function of the file product/update.php. The mani... |
| 9.1 | 2024-10-10 | CVE-2024-47871 | cve | Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves **insecure communication** between the FRP (Fast Reverse Proxy) client and se... |
| 9.8 | 2024-10-10 | CVE-2024-9818 | cve | A vulnerability classified as critical has been found in SourceCodester Online Veterinary Appointment System 1.0. Affected is an unknown function of the file /admin/categories/m... |
| 9.8 | 2024-10-10 | CVE-2024-47636 | cve | Deserialization of Untrusted Data vulnerability in Eyecix JobSearch allows Object Injection.This issue affects JobSearch: from n/a through 2.5.9. |
| 9.8 | 2024-10-10 | CVE-2024-9811 | cve | A vulnerability classified as critical has been found in code-projects Restaurant Reservation System 1.0. This affects an unknown part of the file filter3.php. The manipulation ... |
| 9.8 | 2024-10-10 | CVE-2024-9812 | cve | A vulnerability classified as critical was found in code-projects Crud Operation System 1.0. This vulnerability affects unknown code of the file delete.php. The manipulation of ... |
| 9.8 | 2024-10-10 | CVE-2024-9813 | cve | A vulnerability, which was classified as critical, has been found in Codezips Pharmacy Management System 1.0. This issue affects some unknown processing of the file product/regi... |
| 9.8 | 2024-10-10 | CVE-2024-9793 | cve | A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This vulnerability affects the function ate_iwpriv_set/ate_ifconfig_set of the file /goform/a... |
| 9.8 | 2024-10-10 | CVE-2024-9794 | cve | A vulnerability, which was classified as critical, has been found in Codezips Online Shopping Portal 1.0. This issue affects some unknown processing of the file /update-image1.p... |
| 9.8 | 2024-10-10 | CVE-2024-45115 | cve | Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. A... |
| 9.8 | 2024-10-10 | CVE-2024-9201 | cve | The SEUR plugin, in its versions prior to 2.5.11, is vulnerable to time-based SQL injection through the use of the ‘id_order’ parameter of the ‘/modules/seur/ajax/saveCodFee.php... |
| 9.8 | 2024-10-10 | CVE-2024-9796 | cve | The WP-Advanced-Search WordPress plugin before 3.3.9.2 does not sanitize and escape the t parameter before using it in a SQL statement, allowing unauthenticated users to perform... |
| 9.1 | 2024-10-10 | CVE-2024-48949 | cve | The verify function in lib/elliptic/eddsa/index.js in the Elliptic package before 6.5.6 for Node.js omits "sig.S().gte(sig.eddsa.curve.n) || sig.S().isNeg()" validation. |
| 9.8 | 2024-10-09 | CVE-2024-47832 | cve | ssoready is a single sign on provider implemented via docker. Affected versions are vulnerable to XML signature bypass attacks. An attacker can carry out signature bypass if you... |
| 9.1 | 2024-10-09 | CVE-2024-9465 | cve | An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to reveal Expedition database contents, such as password hashes, usernames, de... |
| Page(s) : 1 ... 97 98 99 100 101 102 103 104 105 106 [107] 108 109 110 111 112 113 114 115 116 117 ... | Result(s) : 43228 |
