| Page(s) : 1 ... 164 165 166 167 168 169 170 171 172 173 [174] 175 176 177 178 179 180 181 182 183 184 ... | Result(s) : 43288 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 10 | 2024-04-12 | CVE-2024-3400 | cve | A command injection as a result of arbitrary file creation vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS software for specific PAN-OS versions and dist... |
| 9.8 | 2024-04-11 | CVE-2024-25935 | cve | Missing Authorization vulnerability in Metagauss RegistrationMagic.This issue affects RegistrationMagic: from n/a through 5.2.5.9. |
| 9.6 | 2024-04-10 | CVE-2024-31214 | cve | Traccar is an open source GPS tracking system. Traccar versions 5.1 through 5.12 allow arbitrary files to be uploaded through the device image upload API. Attackers have full co... |
| 9.6 | 2024-04-10 | CVE-2024-3157 | cve | Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbo... |
| 9.8 | 2024-04-10 | CVE-2024-31982 | cve | XWiki Platform is a generic wiki platform. Starting in version 2.4-milestone-1 and prior to versions 4.10.20, 15.5.4, and 15.10-rc-1, XWiki's database search allows remote ... |
| 9.8 | 2024-04-10 | CVE-2024-31996 | cve | XWiki Platform is a generic wiki platform. Starting in version 3.0.1 and prior to versions 4.10.19, 15.5.4, and 15.10-rc-1, the HTML escaping of escaping tool that is used in XW... |
| 9.8 | 2024-04-10 | CVE-2024-3566 | cve | A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific con... |
| 9.1 | 2024-04-10 | CVE-2024-1740 | cve | In lunary-ai/lunary version 1.0.1, a vulnerability exists where a user removed from an organization can still read, create, modify, and delete logs by re-using an old authorizat... |
| 9.1 | 2024-04-10 | CVE-2024-1741 | cve | lunary-ai/lunary version 1.0.1 is vulnerable to improper authorization, allowing removed members to read, create, modify, and delete prompt templates using an old authorization ... |
| 9.1 | 2024-04-10 | CVE-2024-3383 | cve | A vulnerability in how Palo Alto Networks PAN-OS software processes data received from Cloud Identity Engine (CIE) agents enables modification of User-ID groups. This impacts us... |
| 9 | 2024-04-10 | CVE-2024-20758 | cve | Adobe Commerce versions 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.7-beta3 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code exec... |
| 9.8 | 2024-04-10 | VU#123335 | VU-CERT | Multiple programming languages fail to escape arguments properly in Microsoft Windows |
| 9.8 | 2024-04-10 | CVE-2024-3119 | cve | A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper handling of 'Call-ID' and 'X-Call-ID' SIP headers. The functio... |
| 9.8 | 2024-04-10 | CVE-2024-3120 | cve | A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is due to inadequate bounds checking when copying 'Content-Length' and &#... |
| 9.8 | 2024-04-10 | CVE-2023-50347 | cve | HCL DRYiCE MyXalytics is impacted by an insecure SQL interface vulnerability, potentially giving an attacker the ability to execute custom SQL queries. A malicious user can run ... |
| 9.8 | 2024-04-10 | CVE-2024-3534 | cve | A vulnerability, which was classified as critical, has been found in Campcodes Church Management System 1.0. Affected by this issue is some unknown functionality of the file log... |
| 9.8 | 2024-04-10 | CVE-2024-3535 | cve | A vulnerability, which was classified as critical, was found in Campcodes Church Management System 1.0. This affects an unknown part of the file /admin/index.php. The manipulati... |
| 9.8 | 2024-04-09 | CVE-2024-3214 | cve | The Relevanssi – A Better Search plugin for WordPress is vulnerable to CSV Injection in all versions up to, and including, 4.22.1. This makes it possible for unauthenticated att... |
| 9.8 | 2024-04-09 | CVE-2023-6317 | cve | A prompt bypass exists in the secondscreen.gateway service running on webOS version 4 through 7. An attacker can create a privileged account without asking the user for the secu... |
| 9 | 2024-04-09 | CVE-2024-29990 | cve | Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability |
| Page(s) : 1 ... 164 165 166 167 168 169 170 171 172 173 [174] 175 176 177 178 179 180 181 182 183 184 ... | Result(s) : 43288 |
