| Page(s) : 1 ... 190 191 192 193 194 195 196 197 198 199 [200] 201 202 203 204 205 206 207 208 209 210 ... | Result(s) : 43289 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-02-06 | CVE-2024-24112 | cve | xmall v1.1 was discovered to contain a SQL injection vulnerability via the orderDir parameter. |
| 9.8 | 2024-02-06 | CVE-2024-22852 | cve | D-Link Go-RT-AC750 GORTAC750_A1_FW_v101b03 contains a stack-based buffer overflow via the function genacgi_main. This vulnerability allows attackers to enable telnet service via... |
| 9.8 | 2024-02-06 | CVE-2024-22853 | cve | D-LINK Go-RT-AC750 GORTAC750_A1_FW_v101b03 has a hardcoded password for the Alphanetworks account, which allows remote attackers to obtain root access via a telnet session. |
| 9.8 | 2024-02-06 | CVE-2024-24398 | cve | Directory Traversal vulnerability in Stimulsoft GmbH Stimulsoft Dashboard.JS before v.2024.1.2 allows a remote attacker to execute arbitrary code via a crafted payload to the fi... |
| 9.4 | 2024-02-05 | CVE-2024-0964 | cve | A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON value in an API request. |
| 9.8 | 2024-02-05 | CVE-2024-23049 | cve | An issue in symphony v.3.6.3 and before allows a remote attacker to execute arbitrary code via the log4j component. |
| 9.6 | 2024-02-05 | CVE-2023-52138 | cve | Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be leveraged to achieve full Remote Comman... |
| 9.8 | 2024-02-05 | CVE-2024-0323 | cve | The FTP server used on the B&R Automation Runtime supports unsecure encryption mechanisms, such as SSLv3, TLSv1.0 and TLS1.1. An network-based attacker can exploit the flaws to ... |
| 9.8 | 2024-02-05 | CVE-2024-23054 | cve | An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for remote code execution due to a package listed in ++plone++static/components not e... |
| 9.8 | 2024-02-05 | CVE-2023-51951 | cve | SQL Injection vulnerability in Stock Management System 1.0 allows a remote attacker to execute arbitrary code via the id parameter in the manage_bo.php file. |
| 9.8 | 2024-02-05 | CVE-2024-24543 | cve | Buffer Overflow vulnerability in the function setSchedWifi in Tenda AC9 v.3.0, firmware version v.15.03.06.42_multi allows a remote attacker to cause a denial of service or run ... |
| 9.8 | 2024-02-05 | CVE-2023-6933 | cve | The Better Search Replace plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.4 via deserialization of untrusted input. This mak... |
| 9.8 | 2024-02-05 | CVE-2023-6989 | cve | The Shield Security – Smart Bot Blocking & Intrusion Prevention Security plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 18.5.9 ... |
| 9.8 | 2024-02-05 | CVE-2024-1225 | cve | A vulnerability classified as critical was found in QiboSoft QiboCMS X1 up to 1.0.6. Affected by this vulnerability is the function rmb_pay of the file /application/index/contro... |
| 9.8 | 2024-02-05 | CVE-2024-23108 | cve | An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSIEM version 7.1.0 through 7.1.1 and 7.0.0 through 7.0.2... |
| 9.8 | 2024-02-05 | CVE-2024-23109 | cve | An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSIEM version 7.1.0 through 7.1.1 and 7.0.0 through 7.0.2... |
| 9.8 | 2024-02-05 | CVE-2024-20011 | cve | In alac decoder, there is a possible information disclosure due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges ne... |
| 9.8 | 2024-02-05 | CVE-2023-7077 | cve | Sharp NEC Displays (P403, P463, P553, P703, P801, X554UN, X464UN, X554UNS, X464UNV, X474HB, X464UNS, X554UNV, X555UNS, X555UNV, X754HB, X554HB, E705, E805, E905, UN551S, UN551VS... |
| 9.8 | 2024-02-05 | CVE-2021-4436 | cve | The 3DPrint Lite WordPress plugin before 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlite_handle_upload AJAX action , allowing unauthe... |
| 9.8 | 2024-02-04 | CVE-2024-25089 | cve | Malwarebytes Binisoft Windows Firewall Control before 6.9.9.2 allows remote attackers to execute arbitrary code via gRPC named pipes. |
| Page(s) : 1 ... 190 191 192 193 194 195 196 197 198 199 [200] 201 202 203 204 205 206 207 208 209 210 ... | Result(s) : 43289 |
