| Page(s) : 1 ... 1568 1569 1570 1571 1572 1573 1574 1575 1576 1577 [1578] 1579 1580 1581 1582 1583 1584 1585 1586 1587 1588 ... | Result(s) : 329510 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-12-06 | CVE-2024-50388 | cve | An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to execute commands. We... |
| N/A | 2024-12-06 | CVE-2024-50389 | cve | A SQL injection vulnerability has been reported to affect QuRouter. If exploited, the vulnerability could allow remote attackers to inject malicious code. We have already fixed... |
| N/A | 2024-12-06 | CVE-2024-50393 | cve | A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to execute arb... |
| N/A | 2024-12-06 | CVE-2024-50402 | cve | A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote... |
| N/A | 2024-12-06 | CVE-2024-50403 | cve | A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote... |
| N/A | 2024-12-06 | CVE-2024-50404 | cve | A link following vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to traverse th... |
| N/A | 2024-12-06 | CVE-2024-53691 | cve | A link following vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained u... |
| N/A | 2024-12-06 | CVE-2024-54143 | cve | openwrt/asu is an image on demand server for OpenWrt based distributions. The request hashing mechanism truncates SHA-256 hashes to only 12 characters. This significantly reduce... |
| N/A | 2024-12-06 | CVE-2024-54749 | cve | Ubiquiti U7-Pro 7.0.35 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root. NOTE: this is disputed by the Suppl... |
| 6.1 | 2024-12-06 | CVE-2024-55268 | cve | A Reflected Cross Site Scripting (XSS) vulnerability was found in /covidtms/registered-user-testing.php in PHPGurukul COVID 19 Testing Management System 1.0 which allows remote ... |
| 7.8 | 2024-12-06 | CVE-2024-11220 | cve | A local low-level user on the server machine with credentials to the running OAS services can create and execute a report with an rdlx file on the server system itself. Any code... |
| 7.5 | 2024-12-06 | CVE-2024-42494 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a a feature that could enable sub accounts or attackers to view and exfiltrate sensitive information fr... |
| 5.3 | 2024-12-06 | CVE-2024-47043 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could enable an attacker to correlate a device serial number and the user's phone number and part of the em... |
| 9.8 | 2024-12-06 | CVE-2024-47547 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a weak mechanism for its users to change their passwords which leaves authentication vulnerable to brut... |
| 4.8 | 2024-12-06 | CVE-2024-48703 | cve | PhpGurukul Medical Card Generation System v1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/search-medicalcard.php via the searchdata parameter. |
| N/A | 2024-12-06 | CVE-2024-48871 | cve | The affected product is vulnerable to a stack-based buffer overflow. An unauthenticated attacker could send a malicious HTTP request that the webserver fails to properly check i... |
| 7.5 | 2024-12-06 | CVE-2024-51727 | cve | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a feature that could enable attackers to invalidate a legitimate user's session and cause a denial... |
| N/A | 2024-12-06 | CVE-2024-52320 | cve | The affected product is vulnerable to a command injection. An unauthenticated attacker could send commands through a malicious HTTP request which could result in remote code exe... |
| N/A | 2024-12-06 | CVE-2024-52558 | cve | The affected product is vulnerable to an integer underflow. An unauthenticated attacker could send a malformed HTTP request, which could allow the attacker to crash the program. |
| 6.5 | 2024-12-06 | CVE-2024-11729 | cve | The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to SQL Injection via the 'service_list[0][service_id]' parameter of the get_... |
| Page(s) : 1 ... 1568 1569 1570 1571 1572 1573 1574 1575 1576 1577 [1578] 1579 1580 1581 1582 1583 1584 1585 1586 1587 1588 ... | Result(s) : 329510 |
