Foxit PDF Reader Code Execution Vulnerability (CNVD-2024-40811)

Foxit PDF Reader is a PDF document reader and printer with fast startup speed and rich features. A code execution vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute arbitrary code on the system...

CVE-2024-8353 GiveWP – Donation Plugin and Fundraising Platform <= 3.16.1 - Unauthenticated PHP Object Injection

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.16.1 via deserialization of untrusted input via several parameters like 'givetitle' and 'cardaddress'. This makes it possible for unauthenticate...

U.S. Dept Of Defense: CVE-2020-7961 RCE Liferay Portal Unauthenticated via https://████████/

CVE-2020-7961 was a remote code execution vulnerability in Liferay Portal. The vulnerability was exploited through the "/api/jsonws/invoke" endpoint, which allowed unauthenticated users to execute arbitrary commands on the server...

CVE-2024-8316 Progress UI for WPF format provider unsafe deserialization vulnerability

In Progress Telerik UI for WPF versions prior to 2024 Q3 2024.3.924, a code execution attack is possible through an insecure deserialization vulnerability...

Google Chrome Code Execution Vulnerability (CNVD-2024-39741)

Google Chrome is a web browser from Google, an American company. A code execution vulnerability exists in versions prior to Google Chrome 123.0.6312.58, which can be exploited by remote attackers to execute arbitrary code on a system...

Code execution vulnerability in multiple Mozilla products (CNVD-2024-40514)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products, whic...

CVE-2024-38119 Windows Network Address Translation (NAT) Remote Code Execution Vulnerability

...

EUVD-2024-37058

Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability...

AZL-49088 CVE-2024-43799 affecting package nodejs-nodemon 2.0.3-4

Send is a library for streaming files from the file system as a http response. Send passes untrusted user input to SendStream.redirect which executes untrusted code. This issue is patched in send 0.19.0...

KB5043051: Windows 10 Version 1607 / Windows Server 2016 Security Update (September 2024)

The remote Windows host is missing security update 5043051. It is, therefore, affected by multiple vulnerabilities - Windows MSHTML Platform Spoofing Vulnerability CVE-2024-43461 - Windows Remote Desktop Licensing Service Spoofing Vulnerability CVE-2024-43455 - Windows Remote Desktop Licensing...

Code Execution Vulnerability in Multiple Mozilla Products (CNVD-2024-40522)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products that ...

Code execution vulnerability in multiple Mozilla products (CNVD-2024-40521)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in several Mozilla products due to...

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A code execution vulnerability exists in Mozilla Firefox, which can be exploited by attackers to execute arbitrary code or cause a denial of service on a vulnerable system...

VMSA-2024-0018:VMware Fusion update addresses a code execution vulnerability (CVE-2024-38811)

Advisory ID: | VMSA-2024-0018 ---|--- Advisory Severity: | Important CVSSv3 Range: | 8.8 Synopsis: | VMware Fusion update addresses a code-execution vulnerability CVE-2024-38811 Issue date: | 2024-09-03 Updated on: | 2024-09-03 Initial Advisory CVEs | CVE-2024-38811 1. Impacted Products VMware...

Google Chrome heap buffer overflow vulnerability (CNVD-2024-38578)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a heap buffer overflow vulnerability that is caused by incorrect boundary checking in Skia. An attacker can exploit this vulnerability to cause an overflow buffer to execute arbitrary code on the system or...

CVE-2024-41364

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution RCE vulnerability via htdocs\trackEdit.php...

Security update for znc (critical)

openSUSE Security Update: Security update for znc Announcement ID: openSUSE-SU-2024:0203-1 Rating: critical References: 1227393 Cross-References: CVE-2024-39844 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes one vulnerability is now available. Description: This update for z...

Security update for python-nltk (important)

openSUSE Security Update: Security update for python-nltk Announcement ID: openSUSE-SU-2024:0221-1 Rating: important References: 1227174 Cross-References: CVE-2024-39705 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes one vulnerability is now available. Description: This...

Foxit PDF Reader Code Execution Vulnerability (CNVD-2024-40815)

Foxit PDF Reader is a PDF document reader and printer with fast startup speed and rich features. A code execution vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute arbitrary code on the system...

Foxit PDF Reader Resource Management Error Vulnerability (CNVD-2024-40814)

Foxit PDF Reader is China Foxit Foxit company a PDF reader. A resource management error vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute code in the context of the current process...