CVE-2024-52911

Bitcoin Core through 28.x has a security issue, the details of which are not disclosed. The earliest affected version is 0.14...

EUVD-2024-49393

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2013-2882

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Google V8, as used in Google Chrome before 28.0.1500.95, allows remote attackers to cause a denial of service or possibly have unspecified other impact via...

Nextcloud Server 27.x < 27.1.10, 28.x < 28.0.6, 29.x < 29.0.1 Incomplete Sanitization Vulnerability

Nextcloud Server is prone to an incomplete sanitization vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2024-8750

Cross-site Scripting XSS vulnerability in idoit pro version 28. This vulnerability allows an attacker to retrieve session details of an authenticated user due to lack of proper sanitization of the following parameters id,lang,mNavID,name,pID,treeNode,type,view...

CVE-2024-8749

SQL injection vulnerability in idoit pro version 28. This vulnerability could allow an attacker to send a specially crafted query to the ID parameter in /var/www/html/src/classes/modules/api/model/cmdb/isysapimodelcmdbobjectsbyrelation.class.php and retrieve all the information stored in the...

CVE-2024-8750 Cross-site Scripting vulnerability in Idoit pro

Cross-site Scripting XSS vulnerability in idoit pro version 28. This vulnerability allows an attacker to retrieve session details of an authenticated user due to lack of proper sanitization of the following parameters id,lang,mNavID,name,pID,treeNode,type,view...

CVE-2024-8750 Cross-site Scripting vulnerability in Idoit pro

Cross-site Scripting XSS vulnerability in idoit pro version 28. This vulnerability allows an attacker to retrieve session details of an authenticated user due to lack of proper sanitization of the following parameters id,lang,mNavID,name,pID,treeNode,type,view...

CVE-2024-8750

CVE-2024-8750 concerns i-doit pro (version 28) with a Cross-site Scripting (XSS) flaw caused by insufficient sanitization of the parameters id, lang, mNavID, name, pID, treeNode, type, and view. Exploitation could allow an attacker to retrieve session details from an authenticated user. The publi...

CVE-2024-8749

Affects idoit pro v28. The SQL injection vulnerability resides in the API endpoint component isys_api_model_cmdb_objects_by_relation.class.php (ID parameter). Exploitation could allow an attacker to retrieve full database information. Based on the connected PT-2024-39224 entry, the issue can be e...

PT-2024-39224 · Unknown · I-Doit Pro

Name of the Vulnerable Software and Affected Versions: idoit pro version 28 Description: The issue is a SQL injection vulnerability that could allow an attacker to send a specially crafted query to the ID parameter in /var/www/html/src/classes/modules/api/model/cmdb/isys api model cmdb objects by...

Nextcloud: Re-emergence of Security Vulnerability in Nextcloud Version 28 Previously Fixed in 25.0.4

A security vulnerability in Nextcloud version 28 was discovered, which had been previously fixed in version 25.0.4...

Mozilla Firefox Security Advisory (MFSA2014-18) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...