| Page(s) : 1 ... 183 184 185 186 187 188 189 190 191 192 [193] 194 195 196 197 198 199 200 201 202 203 ... | Result(s) : 43289 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.1 | 2024-02-15 | CVE-2024-20719 | cve | Adobe Commerce versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an admin attacker to i... |
| 9.8 | 2024-02-15 | CVE-2024-23113 | cve | A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, FortiProxy versions 7.4.0 through 7.4.2... |
| 9.8 | 2024-02-15 | CVE-2024-0390 | cve | INPRAX "iZZi connect" application on Android contains hard-coded MQTT queue credentials. The same MQTT queue is used by corresponding physical recuperation devices. Exploiting t... |
| 9.8 | 2024-02-15 | CVE-2024-26260 | cve | The functionality for synchronization in HGiga OAKlouds' certain moudules has an OS Command Injection vulnerability, allowing remote attackers to inject system commands wit... |
| 9.8 | 2024-02-15 | CVE-2024-26261 | cve | The functionality for file download in HGiga OAKlouds' certain modules contains an Arbitrary File Read and Delete vulnerability. Attackers can put file path in specific req... |
| 9.8 | 2024-02-15 | CVE-2024-26264 | cve | EBM Technologies RISWEB's specific query function parameter does not properly restrict user input, and this feature page is accessible without login. This allows remote att... |
| 9.8 | 2024-02-14 | CVE-2024-25209 | cve | Barangay Population Monitoring System 1.0 was discovered to contain a SQL injection vulnerability via the resident parameter at /endpoint/delete-resident.php. |
| 9.8 | 2024-02-14 | CVE-2024-25210 | cve | Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the expense parameter at /endpoint/delete_expense.php. |
| 9.8 | 2024-02-14 | CVE-2024-25211 | cve | Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the category parameter at /endpoint/delete_category.php. |
| 9.8 | 2024-02-14 | CVE-2024-25214 | cve | An issue in Employee Managment System v1.0 allows attackers to bypass authentication via injecting a crafted payload into the E-mail and Password parameters at /alogin.html. |
| 9.8 | 2024-02-14 | CVE-2024-25215 | cve | Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the pwd parameter at /aprocess.php. |
| 9.8 | 2024-02-14 | CVE-2024-25216 | cve | Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the mailud parameter at /aprocess.php. |
| 9.8 | 2024-02-14 | CVE-2024-25217 | cve | Online Medicine Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /omos/?p=products/view_product. |
| 9.8 | 2024-02-14 | CVE-2024-25220 | cve | Task Manager App v1.0 was discovered to contain a SQL injection vulnerability via the taskID parameter at /TaskManager/EditTask.php. |
| 9.8 | 2024-02-14 | CVE-2024-25222 | cve | Task Manager App v1.0 was discovered to contain a SQL injection vulnerability via the projectID parameter at /TaskManager/EditProject.php. |
| 9.8 | 2024-02-14 | CVE-2024-25223 | cve | Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the orderID parameter at /adminView/viewEachOrder.php. |
| 9.6 | 2024-02-14 | CVE-2024-22093 | cve | When running in appliance mode, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint on multi-bladed systems. A successful exp... |
| 9.3 | 2024-02-14 | CVE-2024-23786 | cve | Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attack... |
| 9.3 | 2024-02-14 | CVE-2024-1485 | cve | A flaw was found in the decompression function of registry-support. This issue can be triggered if an unauthenticated remote attacker tricks a user into parsing a devfile which ... |
| 9.8 | 2024-02-14 | CVE-2024-24691 | cve | Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an unauthenticated user to conduct an escal... |
| Page(s) : 1 ... 183 184 185 186 187 188 189 190 191 192 [193] 194 195 196 197 198 199 200 201 202 203 ... | Result(s) : 43289 |
