| Page(s) : 1 ... 216 217 218 219 220 221 222 223 224 225 [226] 227 228 229 230 231 232 233 234 235 236 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2024-01-03 | CVE-2023-50090 | cve | Arbitrary File Write vulnerability in the saveReportFile method of ureport2 2.2.9 and before allows attackers to write arbitrary files and run arbitrary commands via crafted POS... |
| 9.8 | 2024-01-03 | CVE-2023-49442 | cve | Deserialization of Untrusted Data in jeecgFormDemoController in JEECG 4.0 and earlier allows attackers to run arbitrary code via crafted POST request. |
| 9.8 | 2024-01-03 | CVE-2023-46740 | cve | CubeFS is an open-source cloud-native file storage system. Prior to version 3.3.1, CubeFS used an insecure random string generator to generate user-specific, sensitive keys used... |
| 9.8 | 2024-01-03 | CVE-2023-46741 | cve | CubeFS is an open-source cloud-native file storage system. A vulnerability was found in CubeFS prior to version 3.3.1 that could allow users to read sensitive data from the logs... |
| 9.6 | 2024-01-03 | CVE-2023-39655 | cve | A host header injection vulnerability exists in the NPM package @perfood/couch-auth versions |
| 9.8 | 2024-01-03 | CVE-2023-50921 | cve | An issue was discovered on GL.iNet devices through 4.5.0. Attackers can invoke the add_user interface in the system module to gain root privileges. This affects A1300 4.4.6, AX1... |
| 9.8 | 2024-01-03 | CVE-2023-52304 | cve | Stack overflow in paddle.searchsorted in PaddlePaddle before 2.6.0. This flaw can lead to a denial of service, or even more damage. |
| 9.8 | 2024-01-03 | CVE-2023-52307 | cve | Stack overflow in paddle.linalg.lu_unpack in PaddlePaddle before 2.6.0. This flaw can lead to a denial of service, or even more damage. |
| 9.8 | 2024-01-03 | CVE-2023-52309 | cve | Heap buffer overflow in paddle.repeat_interleave in PaddlePaddle before 2.6.0. This flaw can lead to a denial of service, information disclosure, or more damage is possible. |
| 9.8 | 2024-01-03 | CVE-2023-52310 | cve | PaddlePaddle before 2.6.0 has a command injection in get_online_pass_interval. This resulted in the ability to execute arbitrary commands on the operating system. |
| 9.8 | 2024-01-03 | CVE-2023-52311 | cve | PaddlePaddle before 2.6.0 has a command injection in _wget_download. This resulted in the ability to execute arbitrary commands on the operating system. |
| 9.8 | 2024-01-03 | CVE-2023-52314 | cve | PaddlePaddle before 2.6.0 has a command injection in convert_shape_compare. This resulted in the ability to execute arbitrary commands on the operating system. |
| 9.8 | 2024-01-03 | CVE-2023-51784 | cve | Improper Control of Generation of Code ('Code Injection') vulnerability in Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.9.0, which could lead t... |
| 9.1 | 2024-01-03 | CVE-2023-50351 | cve | HCL DRYiCE MyXalytics is impacted by the use of an insecure key rotation mechanism which can allow an attacker to compromise the confidentiality or integrity of data. |
| 9.8 | 2024-01-03 | CVE-2023-45722 | cve | HCL DRYiCE MyXalytics is impacted by path traversal arbitrary file read vulnerability because it uses external input to construct a pathname that is intended to identify a file ... |
| 9.8 | 2024-01-03 | CVE-2023-45723 | cve | HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. Certain endpoints permit users to manipulate the path (including the file... |
| 9.8 | 2024-01-03 | CVE-2023-45724 | cve | HCL DRYiCE MyXalytics product is impacted by unauthenticated file upload vulnerability. The web application permits the upload of a certain file without requiring user authentic... |
| 9.8 | 2024-01-03 | CVE-2023-46308 | cve | In Plotly plotly.js before 2.25.2, plot API calls have a risk of __proto__ being polluted in expandObjectPaths or nestedProperty. |
| 9.8 | 2024-01-02 | CVE-2023-48419 | cve | An attacker in the wifi vicinity of a target Google Home can spy on the victim, resulting in Elevation of Privilege |
| 9.8 | 2024-01-02 | CVE-2023-50711 | cve | vmm-sys-util is a collection of modules that provides helpers and utilities used by multiple rust-vmm components. Starting in version 0.5.0 and prior to version 0.12.0, an issue... |
| Page(s) : 1 ... 216 217 218 219 220 221 222 223 224 225 [226] 227 228 229 230 231 232 233 234 235 236 ... | Result(s) : 43290 |
