7.4 CVE-2024-6572
Improper host key checking in active check 'Check SFTP Service' and special agent 'VNX quotas and filesystem'...
CVE-2024-8601
This vulnerability exists in TechExcel Back Office Software versions prior to 1.0.0 due to improper...
CVE-2024-44375
D-Link DI-8100 v16.07.26A1 has a stack overflow vulnerability in the dbsrv_asp function.
CVE-2024-7015
Improper Authentication, Missing Authentication for Critical Function, Improper Authorization vulnerability...
9.6 CVE-2024-40643
Joplin is a free, open source note taking and to-do application. Joplin fails to take into account that...
8.3 CVE-2024-45041
External Secrets Operator is a Kubernetes operator that integrates external secret management systems....
2.4 CVE-2024-8042
Rapid7 Insight Platform versions between November 2019 and August 14, 2024 suffer from missing authorization...
4.8 CVE-2024-8372
Improper sanitization of the value of the '[srcset]' attribute in AngularJS allows attackers to bypass...
4.8 CVE-2024-8373
Improper sanitization of the value of the [srcset] attribute in <source> HTML elements in AngularJS...
7.5 CVE-2024-44720
SeaCMS v13.1 was discovered to an arbitrary file read vulnerability via the component admin_safe.php....
9.8 CVE-2024-44721
SeaCMS v13.1 was discovered to a Server-Side Request Forgery (SSRF) via the url parameter at /admin_reslib.php....
4.3 CVE-2024-8604
A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System...
4.3 CVE-2024-8605
A vulnerability classified as problematic was found in code-projects Inventory Management 1.0. This...
8.8 CVE-2024-44333
D-Link DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1,...
5.5 CVE-2024-45406
Craft is a content management system (CMS). Craft CMS 5 stored XSS can be triggered by the breadcrumb...
8.8 CVE-2024-44334
D-Link DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1, DI-7200GV2 v24.04.18E1,...
8.8 CVE-2024-44335
D-Link DI-7003G v19.12.24A1, DI-7003GV2 v24.04.18D1, DI-7100G+V2 v24.04.18D1, DI-7100GV2 v24.04.18D1,...
9.8 CVE-2024-44849
Qualitor up to 8.24 is vulnerable to Remote Code Execution (RCE) via Arbitrary File Upload in checkAcesso.php....
CVE-2024-24510
Cross Site Scripting vulnerability in Alinto SOGo before 5.10.0 allows a remote attacker to execute...
CVE-2024-42759
An issue in Ellevo v.6.2.0.38160 allows a remote attacker to escalate privileges via the /api/usuario/cadastrodesuplente...
7.5 CVE-2024-45296
path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will...