| Page(s) : 1 2 3 4 5 6 7 8 9 10 11 [12] 13 14 15 16 17 18 19 20 21 22 ... | Result(s) : 274471 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-05-07 | CVE-2024-33144 | cve | J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the findApplyedTasksPage function in BpmTaskMapper.xml. |
| N/A | 2024-05-07 | CVE-2024-33146 | cve | J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the export function. |
| N/A | 2024-05-07 | CVE-2024-33748 | cve | Cross-site scripting (XSS) vulnerability in the search function in MvnRepository MS Basic 2.1.18.3 and earlier. |
| N/A | 2024-05-07 | CVE-2024-33856 | cve | An issue was discovered in Logpoint before 7.4.0. An attacker can enumerate a valid list of usernames by observing the response time at the Forgot Password endpoint. |
| N/A | 2024-05-07 | CVE-2024-33857 | cve | An issue was discovered in Logpoint before 7.4.0. Due to a lack of input validation on URLs in threat intelligence, an attacker with low-level access to the system can trigger S... |
| N/A | 2024-05-07 | CVE-2024-33858 | cve | An issue was discovered in Logpoint before 7.4.0. A path injection vulnerability is seen while adding a CSV enrichment source. The source_name parameter could be changed to an a... |
| N/A | 2024-05-07 | CVE-2024-34341 | cve | Trix is a rich text editor. The Trix editor, versions prior to 2.1.1, is vulnerable to arbitrary code execution when copying and pasting content from the web or other documents ... |
| N/A | 2024-05-07 | CVE-2024-4596 | cve | A vulnerability was found in Kimai up to 2.15.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Session Handler. The manipul... |
| N/A | 2024-05-07 | CVE-2022-37249 | cve | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security iss... |
| N/A | 2024-05-07 | CVE-2024-27982 | cve | The team has identified a critical vulnerability in the http server of the most recent version of Node, where malformed headers can lead to HTTP request smuggling. Specifically,... |
| N/A | 2024-05-07 | CVE-2024-29149 | cve | An issue was discovered in Alcatel-Lucent ALE NOE deskphones through 86x8_NOE-R300.1.40.12.4180 and SIP deskphones through 86x8_SIP-R200.1.01.10.728. Because of a time-of-check ... |
| N/A | 2024-05-07 | CVE-2024-29150 | cve | An issue was discovered in Alcatel-Lucent ALE NOE deskphones through 86x8_NOE-R300.1.40.12.4180 and SIP deskphones through 86x8_SIP-R200.1.01.10.728. Because of improper privile... |
| N/A | 2024-05-07 | CVE-2024-29206 | cve | An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge (ADB) and make unsupported changes to the system. Affected P... |
| N/A | 2024-05-07 | CVE-2024-29207 | cve | An Improper Certificate Validation could allow a malicious actor with access to an adjacent network to take control of the system. Affected Products: UniFi Connect Applica... |
| N/A | 2024-05-07 | CVE-2024-29208 | cve | An Unverified Password Change could allow a malicious actor with API access to the device to change the system password without knowing the previous password. Affected Produ... |
| N/A | 2024-05-07 | CVE-2024-29209 | cve | A medium severity vulnerability has been identified in the update mechanism of the Phish Alert Button for Outlook, which could allow an attacker to remotely execute arbitrary co... |
| N/A | 2024-05-07 | CVE-2024-29210 | cve | A local privilege escalation (LPE) vulnerability has been identified in Phish Alert Button for Outlook (PAB), specifically within its configuration management functionalities. T... |
| N/A | 2024-05-07 | CVE-2024-33147 | cve | J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the authRoleList function. |
| N/A | 2024-05-07 | CVE-2024-33148 | cve | J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the list function. |
| N/A | 2024-05-07 | CVE-2024-33149 | cve | J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the myProcessList function. |
| Page(s) : 1 2 3 4 5 6 7 8 9 10 11 [12] 13 14 15 16 17 18 19 20 21 22 ... | Result(s) : 274471 |
