| Page(s) : 1 ... 1463 1464 1465 1466 1467 1468 1469 1470 1471 1472 [1473] 1474 1475 1476 1477 1478 1479 1480 1481 1482 1483 ... | Result(s) : 328978 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.4 | 2024-12-16 | CVE-2024-12664 | cve | A vulnerability, which was classified as problematic, has been found in ruifang-tech Rebuild 3.8.5. This issue affects some unknown processing of the component Project Task Comm... |
| 5.4 | 2024-12-16 | CVE-2024-12665 | cve | A vulnerability, which was classified as problematic, was found in ruifang-tech Rebuild 3.8.5. Affected is an unknown function of the component Task Comment Attachment Upload. T... |
| 8.8 | 2024-12-16 | CVE-2024-12666 | cve | A vulnerability has been found in ClassCMS up to 4.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin?do=admin:user:edit... |
| 5.9 | 2024-12-16 | CVE-2024-12667 | cve | A vulnerability was found in InvoicePlane up to 1.6.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /invoices/view. The manipul... |
| N/A | 2024-12-16 | CVE-2024-12687 | cve | Deserialization of Untrusted Data vulnerability in PlexTrac (Runbooks modules) which allows Object Injection and arbitrary file writes. This issue affects PlexTrac: from 1.61.3... |
| N/A | 2024-12-16 | CVE-2024-55949 | cve | MinIO is a high-performance, S3 compatible object store, open sourced under GNU AGPLv3 license. Minio is subject to a privilege escalation in IAM import API, all users are impac... |
| N/A | 2024-12-16 | CVE-2024-55951 | cve | Metabase is an open-source data analytics platform. For new sandboxing configurations created in 1.52.0 till 1.52.2.4, sandboxed users are able to see field filter values from o... |
| N/A | 2024-12-16 | CVE-2024-55100 | cve | A stored cross-site scripting (XSS) vulnerability in the component /admin/profile.php of Online Nurse Hiring System v1.0 allows attackers to execute arbitrary web scripts or HTM... |
| N/A | 2024-12-16 | CVE-2024-55103 | cve | Online Nurse Hiring System v1.0 was discovered to contain a SQL injection vulnerability in the component /admin/profile.php via the fullname parameter. |
| N/A | 2024-12-16 | CVE-2024-55104 | cve | Online Nurse Hiring System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the component /admin/add-nurse.php via the gender and emailid parameters. |
| N/A | 2024-12-16 | CVE-2024-55557 | cve | ui/pref/ProxyPrefView.java in weasis-core in Weasis 4.5.1 has a hardcoded key for symmetric encryption of proxy credentials. |
| N/A | 2024-12-16 | CVE-2024-29671 | cve | Buffer Overflow vulnerability in NEXTU FLATA AX1500 Router v.1.0.2 allows a remote attacker to execute arbitrary code via the POST request handler component. |
| N/A | 2024-12-16 | CVE-2024-37773 | cve | An HTML injection vulnerability in Sunbird DCIM dcTrack 9.1.2 allows attackers authenticated as administrators to inject arbitrary HTML code in an admin screen. |
| N/A | 2024-12-16 | CVE-2024-37774 | cve | A Cross-Site Request Forgery (CSRF) in Sunbird DCIM dcTrack v9.1.2 allows authenticated attackers to escalate their privileges by forcing an Administrator user to perform sensit... |
| N/A | 2024-12-16 | CVE-2024-37775 | cve | Incorrect access control in Sunbird DCIM dcTrack v9.1.2 allows attackers to create or update a ticket with a location which bypasses an RBAC check. |
| N/A | 2024-12-16 | CVE-2024-37776 | cve | A cross-site scripting (XSS) vulnerability in Sunbird DCIM dcTrack v9.1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in some admin screens. |
| N/A | 2024-12-16 | CVE-2024-52949 | cve | iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memor... |
| N/A | 2024-12-16 | CVE-2024-55554 | cve | Intrexx Portal Server before 12.0.2 allows XSS via a user-defined portlet. |
| N/A | 2024-12-16 | CVE-2024-10972 | cve | Velocidex WinPmem versions 4.1 and below suffer from an Improper Input Validation vulnerability whereby an attacker with admin access can trigger a BSODÂ with a parallel thread c... |
| N/A | 2024-12-16 | CVE-2024-12089 | cve | A stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows a... |
| Page(s) : 1 ... 1463 1464 1465 1466 1467 1468 1469 1470 1471 1472 [1473] 1474 1475 1476 1477 1478 1479 1480 1481 1482 1483 ... | Result(s) : 328978 |
