| Page(s) : 1 ... 181 182 183 184 185 186 187 188 189 190 [191] 192 193 194 195 196 197 198 199 200 201 ... | Result(s) : 43289 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-02-21 | CVE-2024-25124 | cve | Fiber is a web framework written in go. Prior to version 2.52.1, the CORS middleware allows for insecure configurations that could potentially expose the application to multiple... |
| 9.8 | 2024-02-21 | CVE-2024-1701 | cve | A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /... |
| 10 | 2024-02-21 | CVE-2024-1709 | cve | ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass Using an Alternate Path or Channel vulnerability, which may allow an attacker direct access... |
| 9.8 | 2024-02-21 | CVE-2024-1702 | cve | A vulnerability was found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /edit.php. T... |
| 9.8 | 2024-02-21 | CVE-2024-25117 | cve | php-svg-lib is a scalable vector graphics (SVG) file parsing/rendering library. Prior to version 0.5.2, php-svg-lib fails to validate that font-family doesn't contain a PHA... |
| 9.8 | 2024-02-21 | CVE-2024-1212 | cve | Unauthenticated remote attackers can access the system through the LoadMaster management interface, enabling arbitrary system command execution. |
| 9.1 | 2024-02-20 | CVE-2023-6936 | cve | In wolfSSL prior to 5.6.6, if callback functions are enabled (via the WOLFSSL_CALLBACKS flag), then a malicious TLS client or network attacker can trigger a buffer over-read on ... |
| 9.1 | 2024-02-20 | CVE-2023-38562 | cve | A double-free vulnerability exists in the IP header loopback parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted set of network packets can lead to ... |
| 9.8 | 2024-02-20 | CVE-2023-45318 | cve | A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP git commit 80d4004. A specially crafted network packet can lead to ... |
| 9.8 | 2024-02-20 | CVE-2024-24793 | cve | A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature free... |
| 9.8 | 2024-02-20 | CVE-2024-24794 | cve | A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature free... |
| 9.8 | 2024-02-20 | CVE-2024-0715 | cve | Expression Language Injection vulnerability in Hitachi Global Link Manager on Windows allows Code Injection.This issue affects Hitachi Global Link Manager: before 8.8.7-03. |
| 9.8 | 2024-02-20 | CVE-2024-21896 | cve | The permission model protects itself against path traversal attacks by calling path.resolve() on any paths given by the user. If the path is to be treated as a Buffer, the imple... |
| 9.8 | 2024-02-20 | CVE-2024-1297 | cve | Loomio version 2.22.0 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to OS Command Injection. |
| 9.8 | 2024-02-20 | CVE-2024-1651 | cve | Torrentpier version 2.4.1 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to insecure deserialization. |
| 9.8 | 2024-02-19 | CVE-2024-25626 | cve | Yocto Project is an open source collaboration project that helps developers create custom Linux-based systems regardless of the hardware architecture. In Yocto Projects Bitbake ... |
| 9.1 | 2024-02-19 | CVE-2024-1638 | cve | The documentation specifies that the BT_GATT_PERM_READ_LESC and BT_GATT_PERM_WRITE_LESC defines for a Bluetooth characteristic: Attribute read/write permission with LE Secure Co... |
| 9.3 | 2024-02-19 | CVE-2024-25625 | cve | Pimcore's Admin Classic Bundle provides a Backend UI for Pimcore. A potential security vulnerability has been discovered in `pimcore/admin-ui-classic-bundle` prior to versi... |
| 9.8 | 2024-02-19 | CVE-2024-1344 | cve | Encrypted database credentials in LaborOfficeFree affecting version 19.10. This vulnerability allows an attacker to read and extract the username and password from the database ... |
| 9.8 | 2024-02-19 | CVE-2024-1597 | cve | pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject SQL if using PreferQueryMode=SIMPLE. Note this is not the default. In the default mode there is no vulnerability. A... |
| Page(s) : 1 ... 181 182 183 184 185 186 187 188 189 190 [191] 192 193 194 195 196 197 198 199 200 201 ... | Result(s) : 43289 |
