| Page(s) : 1 ... 312 313 314 315 316 317 318 319 320 321 [322] 323 324 325 326 327 328 329 330 331 332 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-08-03 | CVE-2023-38942 | cve | Dango-Translator v4.5.5 was discovered to contain a remote command execution (RCE) vulnerability via the component app/config/cloud_config.json. |
| 9.8 | 2023-08-03 | CVE-2023-33666 | cve | ai-dev aioptimizedcombinations before v0.1.3 was discovered to contain a SQL injection vulnerability via the component /includes/ajax.php. |
| 9.1 | 2023-08-03 | CVE-2023-20214 | cve | A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage software could allow an unauthenticated, remote attacker to gain read permissio... |
| 9.8 | 2023-08-03 | CVE-2023-38951 | cve | ZKTeco BioTime 8.5.5 through 9.x before 9.0.1 (20240617.19506) allows authenticated attackers to create or overwrite arbitrary files on the server via crafted requests to /base/... |
| 9.8 | 2023-08-03 | CVE-2023-36213 | cve | SQL injection vulnerability in MotoCMS v.3.4.3 allows a remote attacker to gain privileges via the keyword parameter of the search function. |
| 9.8 | 2023-08-03 | CVE-2023-4121 | cve | A vulnerability was found in Byzoro Smart S85F Management Platform up to 20230722. It has been classified as critical. Affected is an unknown function. The manipulation of the a... |
| 9.8 | 2023-08-03 | CVE-2023-21408 | cve | Due to insufficient file permissions, unprivileged users could gain access to unencrypted user credentials that are used in the integration interface towards 3rd party systems. |
| 9.8 | 2023-08-03 | CVE-2023-21409 | cve | Due to insufficient file permissions, unprivileged users could gain access to unencrypted administrator credentials allowing the configuration of the application. |
| 9.8 | 2023-08-03 | CVE-2023-4008 | cve | An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.9 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 1... |
| 9.8 | 2023-08-03 | CVE-2023-4120 | cve | A vulnerability was found in Byzoro Smart S85F Management Platform up to 20230722 and classified as critical. This issue affects some unknown processing of the file importhtml.p... |
| 9.8 | 2023-08-03 | CVE-2023-3346 | cve | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial o... |
| 9.1 | 2023-08-03 | CVE-2023-33369 | cve | A path traversal vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing attackers to delete arbitrary files on IDSecure filesystem, causing a denial of service. |
| 9.8 | 2023-08-03 | CVE-2023-33371 | cve | Control ID IDSecure 4.7.26.0 and prior uses a hardcoded cryptographic key in order to sign and verify JWT session tokens, allowing attackers to sign arbitrary session tokens and... |
| 9.8 | 2023-08-03 | CVE-2023-36082 | cve | An isssue in GatesAIr Flexiva FM Transmitter/Exiter Fax 150W allows a remote attacker to gain privileges via the LDAP and SMTP credentials. |
| 9.8 | 2023-08-03 | CVE-2023-38954 | cve | ZKTeco BioAccess IVS v3.3.1 was discovered to contain a SQL injection vulnerability. |
| 9.1 | 2023-08-03 | CVE-2023-37364 | cve | In WS-Inc J WBEM Server 4.7.4 before 4.7.5, the CIM-XML protocol adapter does not disable entity resolution. This allows context-dependent attackers to read arbitrary files or c... |
| 9.8 | 2023-08-03 | CVE-2023-37679 | cve | A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server. |
| 9.8 | 2023-08-02 | CVE-2023-1437 | cve | All versions prior to 9.1.4 of Advantech WebAccess/SCADA are vulnerable to use of untrusted pointers. The RPC arguments the client sent could contain raw memory pointers for the... |
| 9.4 | 2023-08-02 | CVE-2023-1935 | cve | ROC800-Series RTU devices are vulnerable to an authentication bypass, which could allow an attacker to gain unauthorized access to data or control of the device and cause a deni... |
| 9.8 | 2023-08-02 | CVE-2023-26317 | cve | Xiaomi routers have an external interface that can lead to command injection. The vulnerability is caused by lax filtering of responses from external interfaces. Attackers can e... |
| Page(s) : 1 ... 312 313 314 315 316 317 318 319 320 321 [322] 323 324 325 326 327 328 329 330 331 332 ... | Result(s) : 43290 |
