| Page(s) : 1 ... 26 27 28 29 30 31 32 33 34 35 [36] 37 38 39 40 41 42 43 44 45 46 ... | Result(s) : 8820 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.7 | 2023-10-19 | CVE-2023-45809 | cve | Wagtail is an open source content management system built on Django. A user with a limited-permission editor account for the Wagtail admin can make a direct URL request to the a... |
| 3.6 | 2023-10-18 | CVE-2023-45145 | cve | Redis is an in-memory database that persists on disk. On startup, Redis begins listening on a Unix socket before adjusting its permissions to the user-provided configuration. If... |
| 3.7 | 2023-10-18 | CVE-2023-38546 | cve | This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met. libcurl performs transfers. In its AP... |
| 3.1 | 2023-10-17 | CVE-2023-22128 | cve | Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability a... |
| 2.3 | 2023-10-17 | CVE-2023-45152 | cve | Engelsystem is a shift planning system for chaos events. A Blind SSRF in the "Import schedule" functionality makes it possible to perform a port scan against the local environme... |
| 2.8 | 2023-10-17 | CVE-2023-45659 | cve | Engelsystem is a shift planning system for chaos events. If a users' password is compromised and an attacker gained access to a users' account, i.e., logged in and ob... |
| 3.7 | 2023-10-16 | CVE-2023-43814 | cve | Discourse is an open source platform for community discussion. Attackers with details specific to a poll in a topic can use the `/polls/grouped_poll_results` endpoint to view th... |
| 3.1 | 2023-10-16 | CVE-2023-45147 | cve | Discourse is an open source community platform. In affected versions any user can create a topic and add arbitrary custom fields to a topic. The severity of this vulnerability d... |
| 3.3 | 2023-10-13 | CVE-2023-5449 | cve | A potential security vulnerability has been identified in certain HP Displays supporting the Theft Deterrence feature which may allow a monitor’s Theft Deterrence to be deactiva... |
| 3.7 | 2023-10-12 | CVE-2023-41263 | cve | An issue was discovered in Plixer Scrutinizer before 19.3.1. It exposes debug logs to unauthenticated users at the /debug/ URL path. With knowledge of valid IP addresses and sou... |
| 3.5 | 2023-10-12 | CVE-2023-45143 | cve | Undici is an HTTP/1.1 client written from scratch for Node.js. Prior to version 5.26.2, Undici already cleared Authorization headers on cross-origin redirects, but did not clear... |
| 3.3 | 2023-10-10 | CVE-2023-37939 | cve | An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClient for Windows 7.2.0, 7.0 all versions, 6.4 all versions, 6.2 all versions, Lin... |
| 3.3 | 2023-10-04 | CVE-2023-30732 | cve | Improper access control in system property prior to SMR Oct-2023 Release 1 allows local attacker to get CPU serial number. |
| 3.3 | 2023-10-04 | CVE-2023-30735 | cve | Improper Preservation of Permissions vulnerability in SAssistant prior to version 8.7 allows local attackers to access backup data in SAssistant. |
| 2.7 | 2023-10-03 | CVE-2023-28373 | cve | A flaw exists in FlashArray Purity whereby an array administrator by configuring an external key manager can affect the availability of data on the system including snapshots pr... |
| 2.7 | 2023-10-02 | CVE-2023-28372 | cve | A flaw exists in FlashBlade Purity (OE) Version 4.1.0 whereby a user with privileges to extend an object’s retention period can affect the availability of the object lock. |
| 2.7 | 2023-10-02 | CVE-2023-36627 | cve | A flaw exists in FlashBlade Purity whereby a user with access to an administrative account on a FlashBlade that is configured with timezone-dependent snapshot schedules can conf... |
| 3.7 | 2023-09-30 | CVE-2023-5313 | cve | A vulnerability classified as problematic was found in phpkobo Ajax Poll Script 3.18. Affected by this vulnerability is an unknown functionality of the file ajax-poll.php of the... |
| 2.7 | 2023-09-29 | CVE-2023-5159 | cve | Mattermost fails to properly verify the permissions when managing/updating a bot allowing a User Manager role with user edit permissions to manage/update bots. |
| 2.7 | 2023-09-29 | CVE-2023-5193 | cve | Mattermost fails to properly check permissions when retrieving a post allowing for a System Role with the permission to manage channels to read the posts of a DM conversation. |
| Page(s) : 1 ... 26 27 28 29 30 31 32 33 34 35 [36] 37 38 39 40 41 42 43 44 45 46 ... | Result(s) : 8820 |
