| Page(s) : 1 ... 176 177 178 179 180 181 182 183 184 185 [186] 187 188 189 190 191 192 193 194 195 196 ... | Result(s) : 43289 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-03-07 | CVE-2023-46172 | cve | IBM DS8900F HMC 89.21.19.0, 89.21.31.0, 89.30.68.0, 89.32.40.0, and 89.33.48.0 could allow a remote attacker to bypass authentication restrictions for authorized user. IBM X-F... |
| 9.8 | 2024-03-07 | CVE-2024-2264 | cve | A vulnerability, which was classified as critical, has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0. Affected by this issue is some unknown functionality of the file... |
| 9.8 | 2024-03-07 | CVE-2024-1351 | cve | Under certain configurations of --tlsCAFile and tls.CAFile, MongoDB Server may skip peer certificate validation which may result in untrusted connections to succeed. This may ef... |
| 9.1 | 2024-03-07 | CVE-2024-0818 | cve | Arbitrary File Overwrite Via Path Traversal in paddlepaddle/paddle before 2.6 |
| 9.8 | 2024-03-07 | CVE-2024-28222 | cve | In Veritas NetBackup before 8.1.2 and NetBackup Appliance before 3.1.2, the BPCD process inadequately validates the file path, allowing an unauthenticated attacker to upload and... |
| 9.8 | 2024-03-07 | CVE-2023-41014 | cve | code-projects.org Online Job Portal 1.0 is vulnerable to SQL Injection via the Username parameter for "Employer." |
| 9.8 | 2024-03-07 | CVE-2024-0917 | cve | remote code execution in paddlepaddle/paddle 2.6.0 |
| 9.8 | 2024-03-06 | CVE-2023-50716 | cve | eProsima Fast DDS (formerly Fast RTPS) is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.13.0, 2.12.2, 2.11.3... |
| 9.8 | 2024-03-06 | CVE-2024-24765 | cve | CasaOS-UserService provides user management functionalities to CasaOS. Prior to version 0.4.7, path filtering of the URL for user avatar image files was not strict, making it po... |
| 9.8 | 2024-03-06 | CVE-2024-24767 | cve | CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, CasaOS doesn't defend against password brute ... |
| 9.8 | 2024-03-06 | CVE-2023-38944 | cve | An issue in Multilaser RE160V firmware v12.03.01.09_pt and Multilaser RE163V firmware v12.03.01.10_pt allows attackers to bypass the access control and gain complete access to t... |
| 9.8 | 2024-03-06 | CVE-2023-38945 | cve | Multilaser RE160 v5.07.51_pt_MTL01 and v5.07.52_pt_MTL01, Multilaser RE160V v12.03.01.08_pt and V12.03.01.09_pt, and Multilaser RE163V v12.03.01.08_pt allows attackers to bypass... |
| 9.6 | 2024-03-05 | CVE-2024-24275 | cve | Cross Site Scripting vulnerability in Teamwire Windows desktop client v.2.0.1 through v.2.4.0 allows a remote attacker to obtain sensitive information via a crafted payload to t... |
| 9.6 | 2024-03-05 | CVE-2024-24276 | cve | Cross Site Scripting (XSS) vulnerability in Teamwire Windows desktop client v.2.0.1 through v.2.4.0 allows a remote attacker to obtain sensitive information via a crafted payloa... |
| 9.8 | 2024-03-05 | CVE-2024-27764 | cve | An issue in Jeewms v.3.7 and before allows a remote attacker to escalate privileges via the AuthInterceptor component. |
| 9.8 | 2024-03-05 | CVE-2024-27565 | cve | A Server-Side Request Forgery (SSRF) in weixin.php of ChatGPT-wechat-personal commit a0857f6 allows attackers to force the application to make arbitrary requests. |
| 9.8 | 2024-03-05 | CVE-2023-5456 | cve | A CWE-798 “Use of Hard-coded Credentials” vulnerability in the MariaDB database of the web application allows a remote unauthenticated attacker to access the database service an... |
| 9.8 | 2024-03-05 | CVE-2023-45592 | cve | A CWE-250 “Execution with Unnecessary Privileges” vulnerability in the embedded Chromium browser (due to the binary being executed with the “--no-sandbox” option and with root p... |
| 9 | 2024-03-05 | CVE-2023-45597 | cve | A CWE-1236 “Improper Neutralization of Formula Elements in a CSV File” vulnerability in the “file_configuration” functionality of the web application (concerning the function “e... |
| 9.8 | 2024-03-05 | CVE-2023-45600 | cve | A CWE-613 “Insufficient Session Expiration” vulnerability in the web application, due to the session cookie “sessionid” lasting two weeks, facilitates session hijacking attacks ... |
| Page(s) : 1 ... 176 177 178 179 180 181 182 183 184 185 [186] 187 188 189 190 191 192 193 194 195 196 ... | Result(s) : 43289 |
