| Page(s) : 1 ... 322 323 324 325 326 327 328 329 330 331 [332] 333 334 335 336 337 338 339 340 341 342 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-07-13 | CVE-2023-30151 | cve | A SQL injection vulnerability in the Boxtal (envoimoinscher) module for PrestaShop, after version 3.1.10, allows remote attackers to execute arbitrary SQL commands via the `key`... |
| 9.8 | 2023-07-13 | CVE-2023-3657 | cve | A vulnerability, which was classified as critical, has been found in SourceCodester AC Repair and Services System 1.0. This issue affects some unknown processing of the file Mas... |
| 9.8 | 2023-07-13 | CVE-2023-25178 | cve | Controller may be loaded with malicious firmware which could enable remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning. |
| 9.8 | 2023-07-13 | CVE-2023-3658 | cve | A vulnerability, which was classified as critical, was found in SourceCodester AC Repair and Services System 1.0. Affected is an unknown function of the file Master.php?f=delete... |
| 9.8 | 2023-07-13 | CVE-2023-2003 | cve | Embedded malicious code vulnerability in Vision1210, in the build 5 of operating system version 4.3, which could allow a remote attacker to store base64-encoded malicious code i... |
| 9.8 | 2023-07-13 | CVE-2023-3661 | cve | A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been classified as critical. This affects an unknown part of the file /classes/Master.php?f... |
| 9.8 | 2023-07-13 | CVE-2023-20918 | cve | In getPendingIntentLaunchFlags of ActivityOptions.java, there is a possible elevation of privilege due to a confused deputy with no additional execution privileges needed. User ... |
| 9.8 | 2023-07-13 | CVE-2023-21250 | cve | In gatt_end_operation of gatt_utils.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execut... |
| 9.8 | 2023-07-13 | CVE-2023-34124 | cve | The authentication mechanism in SonicWall GMS and Analytics Web Services had insufficient checks, allowing authentication bypass. This issue affects GMS: 9.3.2-SP1 and earlier v... |
| 9.8 | 2023-07-13 | CVE-2023-34128 | cve | Tomcat application credentials are hardcoded in SonicWall GMS and Analytics configuration file. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and... |
| 9.8 | 2023-07-13 | CVE-2023-34130 | cve | SonicWall GMS and Analytics use outdated Tiny Encryption Algorithm (TEA) with a hardcoded key to encrypt sensitive data. This issue affects GMS: 9.3.2-SP1 and earlier versions; ... |
| 9.8 | 2023-07-13 | CVE-2023-37567 | cve | Command injection vulnerability in ELECOM and LOGITEC wireless LAN routers allows a remote unauthenticated attacker to execute an arbitrary command by sending a specially crafte... |
| 9.8 | 2023-07-13 | CVE-2023-34132 | cve | Use of password hash instead of password for authentication vulnerability in SonicWall GMS and Analytics allows Pass-the-Hash attacks. This issue affects GMS: 9.3.2-SP1 and earl... |
| 9.8 | 2023-07-13 | CVE-2023-34136 | cve | Vulnerability in SonicWall GMS and Analytics allows unauthenticated attacker to upload files to a restricted location not controlled by the attacker. This issue affects GMS: 9.3... |
| 9.8 | 2023-07-13 | CVE-2023-34137 | cve | SonicWall GMS and Analytics CAS Web Services application use static values for authentication without proper checks leading to authentication bypass vulnerability. This issue af... |
| 9.8 | 2023-07-13 | CVE-2023-38198 | cve | acme.sh before 3.0.6 runs arbitrary commands from a remote server via eval, as exploited in the wild in June 2023. |
| 9.8 | 2023-07-13 | CVE-2023-38199 | cve | coreruleset (aka OWASP ModSecurity Core Rule Set) through 3.3.4 does not detect multiple Content-Type request headers on some platforms. This might allow attackers to bypass a W... |
| 9.8 | 2023-07-12 | CVE-2023-3643 | cve | A vulnerability was found in Boss Mini 1.4.0 Build 6221. It has been classified as critical. This affects an unknown part of the file boss/servlet/document. The manipulation of ... |
| 9.8 | 2023-07-12 | CVE-2023-3644 | cve | A vulnerability was found in SourceCodester Service Provider Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /classe... |
| 9.8 | 2023-07-12 | CVE-2023-26563 | cve | The Syncfusion EJ2 Node File Provider 0102271 is vulnerable to filesystem-server.js directory traversal. As a result, an unauthenticated attacker can: - On Windows, list files i... |
| Page(s) : 1 ... 322 323 324 325 326 327 328 329 330 331 [332] 333 334 335 336 337 338 339 340 341 342 ... | Result(s) : 43290 |
