| Page(s) : 1 ... 311 312 313 314 315 316 317 318 319 320 [321] 322 323 324 325 326 327 328 329 330 331 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-08-04 | CVE-2023-33379 | cve | Connected IO v2.1.0 and prior has a misconfiguration in their MQTT broker used for management and device communication, which allows devices to connect to the broker and issue c... |
| 9.8 | 2023-08-04 | CVE-2023-38692 | cve | CloudExplorer Lite is an open source, lightweight cloud management platform. Versions prior to 1.3.1 contain a command injection vulnerability in the installation function in mo... |
| 9.1 | 2023-08-04 | CVE-2023-39107 | cve | An arbitrary file overwrite vulnerability in NoMachine Free Edition and Enterprise Client for macOS before v8.8.1 allows attackers to overwrite root-owned files by using hardlinks. |
| 9.8 | 2023-08-04 | CVE-2023-39551 | cve | PHPGurukul Online Security Guards Hiring System v.1.0 is vulnerable to SQL Injection via osghs/admin/search.php. |
| 9.8 | 2023-08-04 | CVE-2023-39346 | cve | LinuxASMCallGraph is software for drawing the call graph of the programming code. Linux ASMCallGraph before commit 20dba06bd1a3cf260612d4f21547c25002121cd5 allows attackers to c... |
| 9.8 | 2023-08-04 | CVE-2023-29689 | cve | PyroCMS 3.9 contains a remote code execution (RCE) vulnerability that can be exploited through a server-side template injection (SSTI) flaw. This vulnerability allows a maliciou... |
| 9.8 | 2023-08-04 | CVE-2023-36480 | cve | The Aerospike Java client is a Java application that implements a network protocol to communicate with an Aerospike server. Prior to versions 7.0.0, 6.2.0, 5.2.0, and 4.5.0 some... |
| 9.8 | 2023-08-04 | CVE-2023-37470 | cve | Metabase is an open-source business intelligence and analytics platform. Prior to versions 0.43.7.3, 0.44.7.3, 0.45.4.3, 0.46.6.4, 1.43.7.3, 1.44.7.3, 1.45.4.3, and 1.46.6.4, a ... |
| 9.8 | 2023-08-04 | CVE-2023-38689 | cve | Logistics Pipes is a modification (a.k.a. mod) for the computer game Minecraft Java Edition. The mod used Java's `ObjectInputStream#readObject` on untrusted data coming fro... |
| 9.8 | 2023-08-04 | CVE-2023-38690 | cve | matrix-appservice-irc is a Node.js IRC bridge for Matrix. Prior to version 1.0.1, it is possible to craft a command with newlines which would not be properly parsed. This would ... |
| 9.8 | 2023-08-04 | CVE-2023-39143 | cve | PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution whe... |
| 9.8 | 2023-08-04 | CVE-2023-33665 | cve | ai-dev aitable before v0.2.2 was discovered to contain a SQL injection vulnerability via the component /includes/ajax.php. |
| 9.8 | 2023-08-04 | CVE-2023-36131 | cve | PHPJabbers Availability Booking Calendar 5.0 is vulnerable to Incorrect Access Control due to improper input validation of password parameter. |
| 9.8 | 2023-08-04 | CVE-2023-36132 | cve | PHP Jabbers Availability Booking Calendar 5.0 is vulnerable to Incorrect Access Control. |
| 9.8 | 2023-08-04 | CVE-2023-36133 | cve | PHPJabbers Availability Booking Calendar 5.0 is vulnerable to User Account Takeover through username/password change. |
| 9.8 | 2023-08-04 | CVE-2023-36134 | cve | In PHP Jabbers Class Scheduling System 1.0, lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers to take over accounts. |
| 9.8 | 2023-08-04 | CVE-2023-36139 | cve | In PHPJabbers Cleaning Business Software 1.0, lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers to take over acco... |
| 9.8 | 2023-08-04 | CVE-2023-38941 | cve | django-sspanel v2022.2.2 was discovered to contain a remote command execution (RCE) vulnerability via the component sspanel/admin_view.py -> GoodsCreateView._post. |
| 9.1 | 2023-08-04 | CVE-2023-3373 | cve | Predictable Exact Value from Previous Values vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT21 model versions 01.49.000 and prior and GOT SIMPLE Series GS21 m... |
| 9 | 2023-08-03 | CVE-2023-36217 | cve | Cross Site Scripting vulnerability in Xoops CMS v.2.5.10 allows a remote attacker to execute arbitrary code via the category name field of the image manager function. |
| Page(s) : 1 ... 311 312 313 314 315 316 317 318 319 320 [321] 322 323 324 325 326 327 328 329 330 331 ... | Result(s) : 43290 |
