| Page(s) : 1 ... 316 317 318 319 320 321 322 323 324 325 [326] 327 328 329 330 331 332 333 334 335 336 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-07-27 | CVE-2023-3974 | cve | OS Command Injection in GitHub repository jgraph/drawio prior to 21.4.0. |
| 9.8 | 2023-07-27 | CVE-2023-3975 | cve | OS Command Injection in GitHub repository jgraph/drawio prior to 21.5.0. |
| 9.8 | 2023-07-26 | CVE-2023-31465 | cve | An issue was discovered in FSMLabs TimeKeeper 8.0.17 through 8.0.28. By intercepting requests from various timekeeper streams, it is possible to find the getsamplebacklog call. ... |
| 9.8 | 2023-07-26 | CVE-2023-26859 | cve | SQL injection vulnerability found in PrestaShop sendinblue v.4.0.15 and before allow a remote attacker to gain privileges via the ajaxOrderTracking.php component. |
| 9.8 | 2023-07-26 | CVE-2023-33308 | cve | A stack-based overflow vulnerability [CWE-124] in Fortinet FortiOS version 7.0.0 through 7.0.10 and 7.2.0 through 7.2.3 and FortiProxy version 7.0.0 through 7.0.9 and 7.2.0 thro... |
| 9.8 | 2023-07-26 | CVE-2023-38669 | cve | Use after free in paddle.diagonal in PaddlePaddle before 2.5.0. This resulted in a potentially exploitable condition. |
| 9.8 | 2023-07-26 | CVE-2023-38671 | cve | Heap buffer overflow in paddle.trace in PaddlePaddle before 2.5.0. This flaw can lead to a denial of service, information disclosure, or more damage is possible. |
| 9.8 | 2023-07-26 | CVE-2023-38673 | cve | PaddlePaddle before 2.5.0 has a command injection in fs.py. This resulted in the ability to execute arbitrary commands on the operating system. |
| 9.8 | 2023-07-26 | CVE-2023-38647 | cve | An attacker can use SnakeYAML to deserialize java.net.URLClassLoader and make it load a JAR from a specified URL, and then deserialize javax.script.ScriptEngineManager to load c... |
| 9.8 | 2023-07-25 | CVE-2023-35941 | cve | Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, a malicious client is able... |
| 9.8 | 2023-07-25 | CVE-2023-35980 | cve | There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined ... |
| 9.8 | 2023-07-25 | CVE-2023-35981 | cve | There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined ... |
| 9.8 | 2023-07-25 | CVE-2023-35982 | cve | There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined ... |
| 9.8 | 2023-07-25 | CVE-2022-46898 | cve | An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Path Traversal via the "restore SQL data" filename. The Vocera Report Console contains... |
| 9.8 | 2023-07-25 | CVE-2023-34798 | cve | An arbitrary file upload vulnerability in eoffice before v9.5 allows attackers to execute arbitrary code via uploading a crafted file. |
| 9.8 | 2023-07-25 | CVE-2023-37258 | cve | DataEase is an open source data visualization analysis tool. Prior to version 1.18.9, DataEase has a SQL injection vulnerability that can bypass blacklists. The vulnerability ha... |
| 9.8 | 2023-07-25 | CVE-2023-37460 | cve | Plexis Archiver is a collection of Plexus components to create archives or extract archives to a directory with a unified `Archiver`/`UnArchiver` API. Prior to version 4.8.0, us... |
| 9.8 | 2023-07-25 | CVE-2023-37677 | cve | Pligg CMS v2.0.2 (also known as Kliqqi) was discovered to contain a remote code execution (RCE) vulnerability in the component admin_editor.php. |
| 9.8 | 2023-07-25 | CVE-2023-37920 | cve | Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2... |
| 9.8 | 2023-07-25 | CVE-2023-3548 | cve | An unauthorized user could gain account access to IQ Wifi 6 versions prior to 2.0.2 by conducting a brute force authentication attack. |
| Page(s) : 1 ... 316 317 318 319 320 321 322 323 324 325 [326] 327 328 329 330 331 332 333 334 335 336 ... | Result(s) : 43290 |
