CVE-2024-24041

A stored cross-site scripting XSS vulnerability in Travel Journal Using PHP and MySQL with Source Code v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the location parameter at /travel-journal/write-journal.php...

CVE-2021-24041

A missing bounds check in image blurring code prior to WhatsApp for Android v2.21.22.7 and WhatsApp Business for Android v2.21.22.7 could have allowed an out-of-bounds write if a user sent a malicious image...

CVE-2024-11948

GFI Archiver Telerik Web UI Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Authentication is not required to exploit this vulnerability. The specific flaw exists within the product installer. The...

CVE-2024-24041

A stored cross-site scripting XSS vulnerability in Travel Journal Using PHP and MySQL with Source Code v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the location parameter at /travel-journal/write-journal.php...

CVE-2024-24041

CVE-2024-24041 describes a stored XSS in Travel Journal Using PHP and MySQL with Source Code v1.0, via a crafted payload injected into the location parameter on /travel-journal/write-journal.php. Affected: Travel Journal app v1.0. Impact: could allow arbitrary script execution. Root cause: input ...

Siemens Desigo PXC and DXR Devices Use of Password Hash with Insufficient Computational Effort (CVE-2022-24041)

A vulnerability has been identified in Desigo DXR2 All versions V01.21.142.5-22, Desigo PXC3 All versions V01.21.142.4-18, Desigo PXC4 All versions V02.20.142.10-10884, Desigo PXC5 All versions V02.20.142.10-10884. The web application stores the PBKDF2 derived key of users passwords with a low...

CVE-2022-24041

creationtimestamp| type| source ---|---|--- 2022-05-10 14:32:58+00:00| seen| https://t.me/cibsecurity/42227...

CVE-2022-24041

CVE-2022-24041 affects Siemens Desigo DXR2, PXC3, PXC4 and PXC5 devices. The vulnerability stems from storing PBKDF2 password hashes with a low iteration count, enabling an attacker with user-profile access to retrieve other accounts’ password hashes and perform offline cracking to recover plaint...

CVE-2021-24041

creationtimestamp| type| source ---|---|--- 2021-12-07 22:22:26+00:00| seen| https://t.me/cibsecurity/33511 2021-12-20 17:29:29+00:00| seen| Telegram/n74gO9NX009X8gwHb-1t49A0wUa0Fdw22AgNR2ljqvHZ9s...

CVE-2021-24041

A missing bounds check in image blurring code prior to WhatsApp for Android v2.21.22.7 and WhatsApp Business for Android v2.21.22.7 could have allowed an out-of-bounds write if a user sent a malicious image...

CVE-2021-24041

A missing bounds check in image blurring code prior to WhatsApp for Android v2.21.22.7 and WhatsApp Business for Android v2.21.22.7 could have allowed an out-of-bounds write if a user sent a malicious image...

CVE-2021-24041

CVE-2021-24041 involves a missing bounds check in WhatsApp for Android and WhatsApp Business for Android image blurring code. The vulnerability could allow an out-of-bounds write when a user sends a malicious image, affecting WhatsApp v2.21.22.7 and WhatsApp Business v2.21.22.7. NVD CVSS metrics ...