CVE-2024-8074 Sensetive Data Exposure in Nomysoft Informatics' Nomysem

Missing Authentication for Critical Function, Missing Authorization vulnerability in Nomysoft Informatics Nomysem allows Collect Data as Provided by Users. This issue affects Nomysem: before 13.10.2024...

CVE-2024-8074

CVE-2024-8074 affects Nomysoft Informatics’ Nomysem before 13.10.2024. The issue is Missing Authentication for a Critical Function and Missing Authorization due to improper privilege management, enabling collection of user-provided data. The CVSS 4.0 vector indicates network access with low attac...

CVE-2024-6406 Sensetive Data Exposure in Yordam Information Technology's Mobile Library Application

Missing Authentication for Critical Function, Missing Authorization vulnerability in Yordam Information Technology Mobile Library Application allows Retrieve Embedded Sensitive Data. This issue affects Mobile Library Application: before 5.0...

CVE-2024-4259 Sensetive Data Exposure in SAMPAS's AKOS

Missing Authorization vulnerability in SAMPAŞ Holding AKOS AkosCepVatandasService, SAMPAŞ Holding AKOS TahsilatService allows Collect Data as Provided by Users. This issue affects AKOS AkosCepVatandasService: before V2.0; AKOS TahsilatService: before V1.0.7...

CVE-2024-4259

CVE-2024-4259 describes a Missing Authorization vulnerability in SAMPAŞ Holding AKOS components: AkosCepVatandasService (before V2.0) and TahsilatService (before V1.0.7). The issue allows Collect Data as Provided by Users. CVSS data indicates a network-based, low complexity but high-severity impa...

CVE-2024-4259 Sensetive Data Exposure in SAMPAS's AKOS

Missing Authorization vulnerability in SAMPAŞ Holding AKOS AkosCepVatandasService, SAMPAŞ Holding AKOS TahsilatService allows Collect Data as Provided by Users. This issue affects AKOS AkosCepVatandasService: before V2.0; AKOS TahsilatService: before V1.0.7...

CVE-2024-4428

CVE-2024-4428 affects Menulux Information Technologies Managment Portal. The issue is a Missing Authentication for Critical Function / Missing Authorization vulnerability in the portal, enabling collection of data provided by users due to improper access control. Affected status and remediation d...

CVE-2024-4428 Sensetive Data Exposure in Menulux Managment Portal

Missing Authentication for Critical Function, Missing Authorization vulnerability in Menulux Information Technologies Managment Portal allows Collect Data as Provided by Users. This issue affects Managment Portal: through 21.05.2024...

CVE-2023-4993 Sensetive Data Exposure in Utarit's Soliclub

Incorrect Use of Privileged APIs vulnerability in Utarit Information Technologies SoliPay Mobile App allows Collect Data as Provided by Users. This issue affects SoliPay Mobile App: before 5.0.8...

Amazon Linux 2023 : grub2-common, grub2-efi-aa64, grub2-efi-aa64-cdboot (ALAS2023-2023-408)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-408 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks ...

ManageEngine ServiceDesk Plus 9.2 Build 9207 Information Disclosure Vulnerability

Exploit for jsp platform in category web applications Title: ManageEngine ServiceDesk Plus Low Privileged User View All Tickets Date: 18 October 2016 Author: p0z Vendor: ManageEngine Vendor Homepage: https://www.manageengine.com/ Product: ServiceDesk Plus Version: 9.2 Build 9207 Other versions...