| Page(s) : 1 ... 1192 1193 1194 1195 1196 1197 1198 1199 1200 1201 [1202] 1203 1204 1205 1206 1207 1208 1209 1210 1211 1212 ... | Result(s) : 301689 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-16 | CVE-2024-54660 | cve | A JNDI injection issue was discovered in Cloudera JDBC Connector for Hive before 2.6.26 and JDBC Connector for Impala before 2.6.35. Attackers can inject malicious parameters in... |
| N/A | 2025-01-16 | CVE-2024-55511 | cve | A null pointer dereference vulnerability in Macrium Reflect prior to 8.1.8017 allows a local attacker to cause a system crash or potentially elevate their privileges via executi... |
| N/A | 2025-01-16 | CVE-2024-57159 | cve | 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaWorkReport/add.html. |
| 4.3 | 2025-01-16 | CVE-2024-57160 | cve | 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaTask/edit.html. |
| 4.3 | 2025-01-16 | CVE-2024-57161 | cve | 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net:80/oa/OaWorkReport/edit.html |
| 7.2 | 2025-01-16 | CVE-2024-57162 | cve | Campcodes Cybercafe Management System v1.0 is vulnerable to SQL Injection in /ccms/view-user-detail.php. |
| N/A | 2025-01-16 | CVE-2024-57611 | cve | 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/doAdminAction.php?act=editShop&shopId. |
| N/A | 2025-01-16 | CVE-2023-4319 | cve | Rejected reason: This CVE ID is a reservation duplicate of CVE-2023-4677. Notes: All CVE users should reference CVE-2023-4677 instead of this CVE ID. |
| N/A | 2025-01-16 | CVE-2025-0518 | cve | Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg allows Read Sensitive Constants Within an Executable. This vulnerability is associated with program files htt... |
| N/A | 2025-01-16 | CVE-2024-37181 | cve | Time-of-check time-of-use race condition in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable information disclo... |
| 7.2 | 2025-01-16 | CVE-2024-41746 | cve | IBM CICS TX Advanced 10.1, 11.1, and Standard 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... |
| N/A | 2025-01-16 | CVE-2024-50633 | cve | A Broken Object Level Authorization (BOLA) vulnerability in Indico through 3.3.5 allows attackers to read information by sending a crafted POST request to the component /api/pri... |
| N/A | 2025-01-16 | CVE-2024-57768 | cve | JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component validRoleKey?sysRole.key. |
| 8.8 | 2025-01-16 | CVE-2024-57769 | cve | JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component borrowmoney/listData?applyUser. |
| 8.8 | 2025-01-16 | CVE-2024-57770 | cve | JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component apply/save#oaContractApply.id. |
| N/A | 2025-01-16 | CVE-2024-57771 | cve | A cross-site scripting (XSS) vulnerability in the common/getEditPage?view interface of JFinalOA before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via ... |
| N/A | 2025-01-16 | CVE-2024-57772 | cve | A cross-site scripting (XSS) vulnerability in the /bumph/getDraftListPage?type interface of JFinalOA before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML... |
| N/A | 2025-01-16 | CVE-2024-57773 | cve | A cross-site scripting (XSS) vulnerability in the openSelectManyUserPage?orgid interface of JFinalOA before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML... |
| N/A | 2025-01-16 | CVE-2024-57774 | cve | A cross-site scripting (XSS) vulnerability in the getBusinessUploadListPage?busid interface of JFinalOA before v2025.01.01 allows attackers to execute arbitrary web scripts or H... |
| 8.8 | 2025-01-16 | CVE-2024-57775 | cve | JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component getWorkFlowHis?insid. |
| Page(s) : 1 ... 1192 1193 1194 1195 1196 1197 1198 1199 1200 1201 [1202] 1203 1204 1205 1206 1207 1208 1209 1210 1211 1212 ... | Result(s) : 301689 |
