| Page(s) : 1 ... 374 375 376 377 378 379 380 381 382 383 [384] 385 386 387 388 389 390 391 392 393 394 ... | Result(s) : 43290 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-04-07 | CVE-2023-27018 | cve | Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the sub_45EC1C function. This vulnerability allows attackers to cause a Denial of Service... |
| 9.8 | 2023-04-07 | CVE-2023-27019 | cve | Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the sub_458FBC function. This vulnerability allows attackers to cause a Denial of Service... |
| 9.8 | 2023-04-07 | CVE-2023-27020 | cve | Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial... |
| 9.8 | 2023-04-07 | CVE-2023-27021 | cve | Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack overflow via the formSetFirewallCfg function. This vulnerability allows attackers to cause a Denial of... |
| 9.8 | 2023-04-07 | CVE-2023-26848 | cve | TOTOlink A7100RU(V7.4cu.2313_B20191024) was discovered to contain a command injection vulnerability via the org parameter at setting/delStaticDhcpRules. |
| 9.8 | 2023-04-07 | CVE-2023-26978 | cve | TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the pppoeAcName parameter at /setting/setWanIeCfg. |
| 9.8 | 2023-04-07 | CVE-2023-29478 | cve | BiblioCraft before 2.4.6 does not sanitize path-traversal characters in filenames, allowing restricted write access to almost anywhere on the filesystem. This includes the Minec... |
| 9.8 | 2023-04-06 | CVE-2023-29473 | cve | webservice in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attacker to run arbitrary commands on the ... |
| 9.8 | 2023-04-06 | CVE-2023-29474 | cve | inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attacker to run arbitrary commands on the p... |
| 9.8 | 2023-04-06 | CVE-2023-29475 | cve | inventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attacker to run arbitrary commands on the p... |
| 9.8 | 2023-04-06 | CVE-2023-29017 | cve | vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. Prior to version 3.9.15, vm2 was not properly handling host objects passed to `Error.... |
| 9.8 | 2023-04-06 | CVE-2023-28500 | cve | A Java insecure deserialization vulnerability in Adobe LiveCycle ES4 version 11.0 and earlier allows unauthenticated remote attackers to gain operating system code execution by ... |
| 9.8 | 2023-04-06 | CVE-2023-0750 | cve | Yellobrik PEC-1864 implements authentication checks via javascript in the frontend interface. When the device can be accessed over the network an attacker could bypass authenti... |
| 9.8 | 2023-04-06 | CVE-2023-24538 | cve | Templates do not properly consider backticks (`) as Javascript string delimiters, and do not escape them as expected. Backticks are used, since ES6, for JS template literals. If... |
| 9.8 | 2023-04-06 | CVE-2023-0580 | cve | Insecure Storage of Sensitive Information vulnerability in ABB My Control System (on-premise) allows an attacker who successfully exploited this vulnerability to gain access to ... |
| 9.8 | 2023-04-06 | CVE-2023-1908 | cve | A vulnerability was found in SourceCodester Simple Mobile Comparison Website 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/categori... |
| 9.8 | 2023-04-05 | CVE-2022-31890 | cve | SQL Injection vulnerability in audit/class.audit.php in osTicket osTicket-plugins before commit a7842d494889fd5533d13deb3c6a7789768795ae via the order parameter to the getOrder ... |
| 9.8 | 2023-04-05 | CVE-2022-4939 | cve | THe WCFM Membership plugin for WordPress is vulnerable to privilege escalation in versions up to, and including 2.10.0, due to a missing capability check on the wp_ajax_nopriv_w... |
| 9.8 | 2023-04-05 | CVE-2023-1782 | cve | HashiCorp Nomad and Nomad Enterprise versions 1.5.0 up to 1.5.2 allow unauthenticated users to bypass intended ACL authorizations for clusters where mTLS is not enabled. This is... |
| 9.8 | 2023-04-05 | CVE-2023-24720 | cve | An arbitrary file upload vulnerability in readium-js v0.32.0 allows attackers to execute arbitrary code via uploading a crafted EPUB file. |
| Page(s) : 1 ... 374 375 376 377 378 379 380 381 382 383 [384] 385 386 387 388 389 390 391 392 393 394 ... | Result(s) : 43290 |
