| Page(s) : 1 ... 381 382 383 384 385 386 387 388 389 390 [391] 392 393 394 395 396 397 398 399 400 401 ... | Result(s) : 43291 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2023-03-28 | CVE-2023-28654 | cve | Osprey Pump Controller version 1.01 has a hidden administrative account that has the hardcoded password that allows full access to the web management interface configuration. Th... |
| 9.8 | 2023-03-28 | CVE-2023-28712 | cve | Osprey Pump Controller version 1.01 contains an unauthenticated command injection vulnerability that could allow system access with www-data permissions. |
| 9.8 | 2023-03-28 | CVE-2023-27821 | cve | Databasir v1.0.7 was discovered to contain a remote code execution (RCE) vulnerability via the mockDataScript parameter. |
| 9.1 | 2023-03-28 | CVE-2022-3686 | cve | A vulnerability exists in a SDM600 endpoint. An attacker could exploit this vulnerability by running multiple parallel requests, the SDM600 web services become busy rendering th... |
| 9.8 | 2023-03-28 | CVE-2023-28326 | cve | Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.0.0 before 7.0.0 Description: Attacker can elevate their privileges in any room |
| 9.1 | 2023-03-27 | CVE-2022-48348 | cve | The MediaProvider module has a vulnerability of unauthorized data read. Successful exploitation of this vulnerability may affect confidentiality and integrity. |
| 9.1 | 2023-03-27 | CVE-2022-48349 | cve | The control component has a spoofing vulnerability. Successful exploitation of this vulnerability may affect confidentiality and availability. |
| 9.8 | 2023-03-27 | CVE-2022-48353 | cve | Some smartphones have configuration issues. Successful exploitation of this vulnerability may cause kernel privilege escalation, which results in system service exceptions. |
| 9.8 | 2023-03-27 | CVE-2023-1665 | cve | Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake prior to 0.0.0. |
| 9.6 | 2023-03-27 | CVE-2023-28102 | cve | discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely constructs a shell string using the file pa... |
| 9.8 | 2023-03-27 | CVE-2023-1666 | cve | A vulnerability has been found in SourceCodester Automatic Question Paper Generator System 1.0 and classified as critical. This vulnerability affects unknown code of the file us... |
| 9.8 | 2023-03-27 | CVE-2023-25261 | cve | Certain Stimulsoft GmbH products are affected by: Remote Code Execution. This affects Stimulsoft Designer (Desktop) 2023.1.4 and Stimulsoft Designer (Web) 2023.1.3 and Stimulsof... |
| 9.8 | 2023-03-27 | CVE-2023-26959 | cve | Phpgurukul Park Ticketing Management System 1.0 is vulnerable to SQL Injection via the User Name parameter. |
| 9.8 | 2023-03-27 | CVE-2023-1133 | cve | Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contain a vulnerability in which the Device-status service listens on port 10100/ UDP by default. The service ... |
| 9.8 | 2023-03-27 | CVE-2023-1140 | cve | Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contain a vulnerability that could allow an attacker to achieve unauthenticated remote code execution in the c... |
| 9.8 | 2023-03-27 | CVE-2023-1142 | cve | In Delta Electronics InfraSuite Device Master versions prior to 1.0.5, an attacker could use URL decoding to retrieve system files, credentials, and bypass authentication result... |
| 9.8 | 2023-03-27 | CVE-2023-1399 | cve | N6854A Geolocation Server versions 2.4.2 are vulnerable to untrusted data deserialization, which may allow a malicious actor to escalate privileges in the affected device’s def... |
| 9.8 | 2023-03-27 | CVE-2023-27847 | cve | SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components. |
| 9.8 | 2023-03-27 | CVE-2022-4126 | cve | Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and Passwords.This issue affects RCCMD: before 4.40 230207. |
| 9.8 | 2023-03-27 | CVE-2018-25083 | cve | The pullit package before 1.4.0 for Node.js allows OS Command Injection because eval is used on an attacker-supplied Git branch name. |
| Page(s) : 1 ... 381 382 383 384 385 386 387 388 389 390 [391] 392 393 394 395 396 397 398 399 400 401 ... | Result(s) : 43291 |
