CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/23 7:18 a.m.•6 views

CVE-2024-8644

Cleartext Storage of Sensitive Information in a Cookie vulnerability in Oceanic Software ValeApp allows Protocol Manipulation, : JSON Hijacking aka JavaScript Hijacking. This issue affects ValeApp: before v2.0.0...

9.3CVSS5.8AI score0.00262EPSS

RedhatCVE•added 2025/05/23 7:18 a.m.•8 views

CVE-2024-8608

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Oceanic Software ValeApp allows Stored XSS. This issue affects ValeApp: before v2.0.0...

7.2CVSS5.8AI score0.00269EPSS

RedhatCVE•added 2025/05/23 6:28 a.m.•3 views

CVE-2024-8609

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. This issue affects ValeApp: before v2.0.0...

8.8CVSS5.8AI score0.00462EPSS

RedhatCVE•added 2025/05/23 6:28 a.m.•5 views

CVE-2024-8643

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking. This issue affects ValeApp: before v2.0.0...

9.8CVSS5.8AI score0.00447EPSS

OSV•added 2024/09/27 12:15 p.m.•2 views

CVE-2024-8644

7.5CVSS5.8AI score0.00262EPSS

OSV•added 2024/09/27 12:15 p.m.•1 views

CVE-2024-8643

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking.This issue affects ValeApp: before v2.0.0...

9.8CVSS5.8AI score

NVD•added 2024/09/27 12:15 p.m.•11 views

CVE-2024-8644

9.3CVSS0.00262EPSS

Exploits0References2

9.8CVSS5.8AI score0.00447EPSS

CVE-2024-8643

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking. This issue affects ValeApp: before v2.0.0...

9.3CVSS5.8AI score0.00262EPSS

CVE-2024-8644

NVD•added 2024/09/27 12:15 p.m.•11 views

CVE-2024-8643

Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking. This issue affects ValeApp: before v2.0.0...

9.8CVSS0.00447EPSS

Exploits0References2

OSV•added 2024/09/27 12:15 p.m.•1 views

CVE-2024-8609

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information.This issue affects ValeApp: before v2.0.0...

7.5CVSS5.8AI score0.00462EPSS

OSV•added 2024/09/27 12:15 p.m.•3 views

CVE-2024-8608

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Oceanic Software ValeApp allows Stored XSS.This issue affects ValeApp: before v2.0.0...

5.4CVSS5.8AI score0.00269EPSS

OSV•added 2024/09/27 12:15 p.m.•1 views

CVE-2024-8607

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Oceanic Software ValeApp allows SQL Injection.This issue affects ValeApp: before v2.0.0...

9.8CVSS5.8AI score

7.2CVSS5.8AI score0.00269EPSS

CVE-2024-8608

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Oceanic Software ValeApp allows Stored XSS. This issue affects ValeApp: before v2.0.0...

8.8CVSS5.8AI score0.00462EPSS

CVE-2024-8609

Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information. This issue affects ValeApp: before v2.0.0...