CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2024/10/29 2:15 a.m.•3 views

CVE-2024-10479

A vulnerability, which was classified as problematic, was found in LinZhaoguan pb-cms up to 2.0.1. Affected is an unknown function of the file /adminthemes of the component Theme Management Module. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...

5.4CVSS3.7AI score

NVD•added 2024/10/29 2:15 a.m.•12 views

CVE-2024-10479

5.4CVSS0.0028EPSS

CVE•added 2024/10/29 1:0 a.m.•48 views

CVE-2024-10479

CVE-2024-10479 affects LinZhaoguan pb-cms up to version 2.0.1, specifically a vulnerability in the Theme Management Module’s file /admin#themes that enables cross-site scripting. The flaw can be exploited remotely and the exploit has been disclosed publicly. Affected function/details are not full...

5.4CVSS3.4AI score0.0028EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2024/10/29 1:0 a.m.•9 views

CVE-2024-10479 LinZhaoguan pb-cms Theme Management Module admin#themes cross site scripting

5.1CVSS6.5AI score0.0028EPSS

CNNVD•added 2024/10/29 12:0 a.m.•2 views

pb-cms 跨站脚本漏洞

pb-cms waterfall content management system is a content management system by LinZhaoguan personal developer. A cross-site scripting vulnerability exists in pb-cms versions prior to 2.0.1, which stems from the component Theme Management Module's file /adminthemes that can lead to cross-site...

5.4CVSS3.8AI score0.0028EPSS

Vulnrichment•added 2024/10/21 6:1 p.m.•12 views

CVE-2024-49895 drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation This commit addresses a potential index out of bounds issue in the cm3helpertranslatecurvetodegammahwformat function in the DCN30 color...

7.4AI score0.00272EPSS

Exploits0References7

Cvelist•added 2024/09/18 12:0 a.m.•26 views

CVE-2024-46372

DedeCMS 5.7.115 is vulnerable to Cross Site Scripting XSS via the advertisement code box in the advertisement management module...

0.00259EPSS

Positive Technologies•added 2024/09/10 12:0 a.m.•3 views

PT-2024-20725 · Samsung · Samsung Exynos Modem +1

Name of the Vulnerable Software and Affected Versions: Samsung Exynos versions 9820 through 9825 Samsung Exynos versions 980 through 990 Samsung Exynos versions 850 through 1080 Samsung Exynos versions 2100 through 2200 Samsung Exynos versions 1280 through 1380 Samsung Exynos version 1330 Samsung...

5.9CVSS6.4AI score0.00386EPSS

Exploits0References7

Cvelist•added 2024/09/04 2:22 a.m.•21 views

CVE-2024-8298

Memory request vulnerability in the memory management module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

6.2CVSS0.00112EPSS

Vulnrichment•added 2024/09/04 2:22 a.m.•8 views

CVE-2024-8298

Memory request vulnerability in the memory management module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

6.2CVSS6.9AI score0.00112EPSS

CNNVD•added 2024/08/16 12:0 a.m.•3 views

Vtiger CRM 安全漏洞

Vtiger CRM is a customer relationship management system CRM developed based on SugarCRM by Vtiger USA. The management system provides functions such as managing, collecting, and analyzing customer information. A security vulnerability exists in VTiger CRM version 8.1.0 and prior versions, which...

8.3CVSS6.7AI score0.00401EPSS

CNVD•added 2024/05/22 12:0 a.m.•2 views

Huawei EMUI/HarmonyOS Double Release Vulnerability

Huawei EMUI and Huawei HarmonyOS are both products of Huawei, a mobile operating system based on Android, and Huawei HarmonyOS, a distributed operating system developed by Huawei for the whole scenario, aiming at realizing intelligent interconnection and resource sharing among people, devices, an...

5.5CVSS6.7AI score0.00144EPSS

BDU FSTEC•added 2024/05/20 12:0 a.m.•4 views

The vulnerabilities of the System Management Module (SMM/SMM2) and the Fan Power Controller (FPC) in the microprogramming software for Lenovo ThinkSystem, ThinkAgile, NeXtScale storage systems, as well as Lenovo CP-CB-10 laptops, allow attackers to execute arbitrary commands.

The vulnerability of the System Management Module SMM/SMM2 and the Fan Power Controller FPC in the microprogramming operating systems of Lenovo’s ThinkSystem, ThinkAgile, NeXtScale storage systems, and Lenovo CP-CB-10 laptops exists due to the failure to take measures to neutralize the special...

9CVSS5.9AI score0.00665EPSS

BDU FSTEC•added 2024/05/20 12:0 a.m.•3 views

The vulnerabilities of the System Management Module (SMM/SMM2) and the Fan Power Controller (FPC) in the microprogramming software of Lenovo’s storage systems such as ThinkSystem, ThinkAgile, NeXtScale, as well as Lenovo CP-CB-10 laptops, allow attackers to gain unauthorized access to protected information.

The vulnerability of the System Management Module SMM/SMM2 and the Fan Power Controller FPC in the microprogramming software of Lenovo’s storage systems such as ThinkSystem, ThinkAgile, NeXtScale, as well as Lenovo CP-CB-10 laptops, is related to the absence of authentication for critical...

7.8CVSS5.6AI score0.0053EPSS

BDU FSTEC•added 2024/05/20 12:0 a.m.•3 views

9CVSS5.9AI score0.01131EPSS

BDU FSTEC•added 2024/05/20 12:0 a.m.•3 views

9CVSS5.9AI score0.01131EPSS