4571 matches found
CVE-2024-1975 affecting package dhcp for versions less than 4.4.3.P1-2
CVE-2024-1975 affecting package dhcp for versions less than 4.4.3.P1-2. A patched version of the package is available...
CVE-2022-41722 affecting package golang for versions less than 1.22.7-2
CVE-2022-41722 affecting package golang for versions less than 1.22.7-2. An upgraded version of the package is available that resolves this issue...
CVE-2019-10638 affecting package hyperv-daemons for versions less than 6.6.35.1-1
CVE-2019-10638 affecting package hyperv-daemons for versions less than 6.6.35.1-1. A patched version of the package is available...
CVE-2024-6104 affecting package prometheus for versions less than 2.45.4-3
CVE-2024-6104 affecting package prometheus for versions less than 2.45.4-3. A patched version of the package is available...
CVE-2024-0646 affecting package kernel for versions less than 6.6.35.1-4
CVE-2024-0646 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...
CVE-2023-52356 affecting package libtiff for versions less than 4.6.0-2
CVE-2023-52356 affecting package libtiff for versions less than 4.6.0-2. A patched version of the package is available...
CVE-2024-23307 affecting package kernel for versions less than 6.6.35.1-4
CVE-2024-23307 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...
CVE-2024-24859 affecting package kernel for versions less than 6.6.35.1-4
CVE-2024-24859 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...
CVE-2024-28986
SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code Execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine. While it was reported as an unauthenticated vulnerability, SolarWinds has been unable to reproduce...
PT-2024-27243 · Unknown · Ada Web Server
Name of the Vulnerable Software and Affected Versions: Ada Web Server version 20.0 Description: An issue was discovered in Ada Web Server when configured to use SSL, which is not the default setting. The SSL/TLS used to establish connections to external services is done without proper hostname...
CVE-2024-28986
SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code Execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine. While it was reported as an unauthenticated vulnerability, SolarWinds has been unable to reproduce it...
WordPress Products, Order & Customers Export for WooCommerce Plugin <= 2.0.11 is vulnerable to Cross Site Scripting (XSS)
Software Products, Order & Customers Export for WooCommerce Type Plugin Vulnerable versions = 2.0.11 Fixed in 2.0.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43127 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0c64f76a48fe...
PT-2024-28398 · Gl.Inet · X750 +19
Name of the Vulnerable Software and Affected Versions: GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 version 4.3.11 GL-iNet products MT3000/MT2500/AXT1800/AX1800/A1300/X300B version 4.5.16 GL-iNet products XE300 version 4.3.16 GL-iNet products E750 version 4.3....
CVE-2024-38588 affecting package kernel for versions less than 5.15.162.2-1
CVE-2024-38588 affecting package kernel for versions less than 5.15.162.2-1. A patched version of the package is available...
CVE-2024-42074 affecting package kernel for versions less than 5.15.162.2-1
CVE-2024-42074 affecting package kernel for versions less than 5.15.162.2-1. A patched version of the package is available...
PT-2024-28321
Name of the Vulnerable Software and Affected Versions chargeover redoc version 2.0.9-rc.69 Description The issue allows attackers to execute arbitrary code or cause a Denial of Service DoS and have other impacts via the mergeObjects function. Recommendations For chargeover redoc version...
PT-2024-38181
Name of the Vulnerable Software and Affected Versions: SourceCodester School Log Management System version 1.0 Description: A critical issue has been found in the SourceCodester School Log Management System, affecting some unknown functionality of the file /admin/manage user.php. The manipulation...
PT-2024-38179
Name of the Vulnerable Software and Affected Versions: SourceCodester School Log Management System version 1.0 Description: A critical issue has been found in the system, affecting an unknown function of the file /admin/ajax.php?action=login. The manipulation of the username argument leads to SQL...
PT-2024-28984 · Ibm · Ibm Infosphere Information Server
Name of the Vulnerable Software and Affected Versions: IBM InfoSphere Information Server version 11.7 Description: The issue allows a remote attacker to send specially crafted SQL statements, potentially enabling them to view, add, modify, or delete information in the back-end database. This is a...
CVE-2024-27319 affecting package pytorch for versions less than 2.2.2-1
CVE-2024-27319 affecting package pytorch for versions less than 2.2.2-1. A patched version of the package is available...