232 matches found
CVE-2024-30003
Windows Mobile Broadband Driver Remote Code Execution Vulnerability...
GHSA-84PR-M4JR-85G5 flask-cors vulnerable to log injection when the log level is set to debug
corydolphin/flask-cors is vulnerable to log injection when the log level is set to debug. An attacker can inject fake log entries into the log file by sending a specially crafted GET request containing a CRLF sequence in the request path. This vulnerability allows attackers to corrupt log files,...
CVE-2024-3771
A vulnerability was found in PHPGurukul Student Record System 3.20 and classified as critical. Affected by this issue is some unknown functionality of the file /edit-subject.php. The manipulation of the argument sub1/sub2/sub3/sub4/udate leads to sql injection. The attack may be launched remotely...
CVE-2024-28910
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability...
CVE-2024-26242
Windows Telephony Server Elevation of Privilege Vulnerability...
CVE-2024-26231
Windows DNS Server Remote Code Execution Vulnerability...
CVE-2024-26233
Windows DNS Server Remote Code Execution Vulnerability...
CVE-2024-26224
Windows DNS Server Remote Code Execution Vulnerability...
CVE-2024-26218
Windows Kernel Elevation of Privilege Vulnerability...
CVE-2024-26217
Windows Remote Access Connection Manager Information Disclosure Vulnerability...
CVE-2024-26180
Secure Boot Security Feature Bypass Vulnerability...
Out-of-Memory
thunderbird is vulnerable to Out-of-Memory. The vulnerability is due to the library's previous behavior of attempting to continue execution despite encountering out-of-memory conditions, which could potentially lead to exploitation...
CVE-2024-29057
Microsoft Edge Chromium-based Spoofing Vulnerability...
CVE-2024-2015
A vulnerability, which was classified as critical, has been found in ZhiCms 4.0. This issue affects the function getindexdata of the file app/index/controller/mcontroller.php. The manipulation of the argument key leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2024-21444
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...
CVE-2024-21431
Hypervisor-Protected Code Integrity HVCI Security Feature Bypass Vulnerability...
CVE-2024-21419
Microsoft Dynamics 365 on-premises Cross-site Scripting Vulnerability...
CVE-2024-21408
Windows Hyper-V Denial of Service Vulnerability...
CVE-2024-20684
Windows Hyper-V Denial of Service Vulnerability...
CVE-2024-22660
TOTOLINKA3700RV9.1.2u.616520211012has a stack overflow vulnerability via setLanguageCfg...