| Page(s) : 1 ... 1249 1250 1251 1252 1253 1254 1255 1256 1257 1258 [1259] 1260 1261 1262 1263 1264 1265 1266 1267 1268 1269 ... | Result(s) : 301836 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-10 | CVE-2024-54998 | cve | MonicaHQ v4.1.2 was discovered to contain an authenticated Client-Side Injection vulnerability via the Reason parameter at /people/h:[id]/debts/create. |
| N/A | 2025-01-10 | CVE-2024-5872 | cve | On affected platforms running Arista EOS, a specially crafted packet with incorrect VLAN tag might be copied to CPU, which may cause incorrect control plane behavior related to ... |
| N/A | 2025-01-10 | CVE-2024-7095 | cve | On affected platforms running Arista EOS with SNMP configured, if “snmp-server transmit max-size” is configured, under some circumstances a specially crafted packet can cause th... |
| N/A | 2025-01-10 | CVE-2024-47517 | cve | Expired and unusable administrator authentication tokens can be revealed by units that have timed out from ETM access |
| N/A | 2025-01-10 | CVE-2024-47518 | cve | Specially constructed queries targeting ETM could discover active remote access sessions |
| N/A | 2025-01-10 | CVE-2024-47519 | cve | Backup uploads to ETM subject to man-in-the-middle interception |
| N/A | 2025-01-10 | CVE-2024-47520 | cve | A user with advanced report application access rights can perform actions for which they are not authorized |
| N/A | 2025-01-10 | CVE-2024-7142 | cve | On Arista CloudVision Appliance (CVA) affected releases running on appliances that support hardware disk encryption (DCA-350E-CV only), the disk encryption might not be successf... |
| N/A | 2025-01-10 | CVE-2024-9131 | cve | A user with administrator privileges can perform command injection |
| N/A | 2025-01-10 | CVE-2024-9132 | cve | The administrator is able to configure an insecure captive portal script |
| N/A | 2025-01-10 | CVE-2024-9133 | cve | A user with administrator privileges is able to retrieve authentication tokens |
| N/A | 2025-01-10 | CVE-2024-9134 | cve | Multiple SQL Injection vulnerabilities exist in the reporting application. A user with advanced report application access rights can exploit the SQL injection, allowing them to... |
| N/A | 2025-01-10 | CVE-2024-9188 | cve | Specially constructed queries cause cross platform scripting leaking administrator tokens |
| 6.1 | 2025-01-10 | CVE-2025-23110 | cve | An issue was discovered in REDCap 14.9.6. A Reflected cross-site scripting (XSS) vulnerability in the email-subject field exists while performing an upload of a CSV file contain... |
| 6.1 | 2025-01-10 | CVE-2025-23111 | cve | An issue was discovered in REDCap 14.9.6. It allows HTML Injection via the Survey field name, exposing users to a redirection to a phishing website. An attacker can exploit this... |
| 6.1 | 2025-01-10 | CVE-2025-23112 | cve | An issue was discovered in REDCap 14.9.6. A stored cross-site scripting (XSS) vulnerability allows authenticated users to inject malicious scripts into the Survey field name of ... |
| 8.8 | 2025-01-10 | CVE-2025-23113 | cve | An issue was discovered in REDCap 14.9.6. It has an action=myprojects&logout=1 CSRF issue in the alert-title while performing an upload of a CSV file containing a list of alert ... |
| N/A | 2025-01-10 | CVE-2025-22946 | cve | Tenda ac9 v1.0 firmware v15.03.05.19 contains a stack overflow vulnerability in /goform/SetOnlineDevName, which may lead to remote arbitrary code execution. |
| 6.2 | 2025-01-10 | CVE-2025-23022 | cve | FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c. |
| N/A | 2025-01-10 | CVE-2024-25371 | cve | Gramine before a390e33e16ed374a40de2344562a937f289be2e1 suffers from an Interface vulnerability due to mismatching SW signals vs HW exceptions. |
| Page(s) : 1 ... 1249 1250 1251 1252 1253 1254 1255 1256 1257 1258 [1259] 1260 1261 1262 1263 1264 1265 1266 1267 1268 1269 ... | Result(s) : 301836 |
