Moodle information disclosure | CVE-2024-25981
NAME__________Moodle information disclosurePlatforms Affected:Moodle Moodle 4.1 Moodle Moodle 4.2 Moodle Moodle 4.3 Moodle Moodle 4.1.8 Moodle Moodle 4.2.5 Moodle Moodle...
Month: February 2024
IBM Common Licensing information disclosure | CVE-2023-50306
NAME__________IBM Common Licensing information disclosurePlatforms Affected:IBM Common Licensing 9.0Risk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Common Licensing 9.0 could allow a local user...
Liferay Portal and DXP security bypass | CVE-2024-25149
NAME__________Liferay Portal and DXP security bypassPlatforms Affected:Liferay Portal 7.4.1 Liferay DXP 7.3.10-dxp-2 Liferay DXP 7.2.10-dxp-14Risk Level:5.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Liferay Portal and...
Liferay Portal and DXP information disclosure | CVE-2024-25150
NAME__________Liferay Portal and DXP information disclosurePlatforms Affected:Liferay Portal 7.4.2 Liferay DXP 7.3.10-dxp-3 Liferay DXP 7.2.10-dxp-18Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Liferay Portal and...
cbor2 denial of service | CVE-2024-26134
NAME__________cbor2 denial of servicePlatforms Affected:cbor2 cbor2 5.5.1 cbor2 cbor2 5.6.1Risk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________cbor2 is vulnerable to a...
Multiple ELECOM wireless LAN routers cross-site request forgery | CVE-2024-23910
NAME__________Multiple ELECOM wireless LAN routers cross-site request forgeryPlatforms Affected:ELECOM WRC-1167GS2-B 1.67 ELECOM WRC-1167GS2H-B 1.67 ELECOM WRC-2533GS2-B 1.62 ELECOM WRC-2533GS2-W 1.62...
Liferay Portal and DXP information disclosure | CVE-2024-25605
NAME__________Liferay Portal and DXP information disclosurePlatforms Affected:Liferay Portal 7.4.3.4 Liferay DXP 7.3.10-dxp-2 Liferay DXP 7.2.10-dxp-16 Liferay DXP 7.4.13Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information...
Multiple ELECOM wireless LAN routers cross-site scripting | CVE-2024-21798
NAME__________Multiple ELECOM wireless LAN routers cross-site scriptingPlatforms Affected:ELECOM WRC-1167GS2-B 1.67 ELECOM WRC-1167GS2H-B 1.67 ELECOM WRC-2533GS2-B 1.62 ELECOM WRC-2533GS2-W 1.62 ELECOM...
Apache Dolphinscheduler information disclosure | CVE-2023-51770
NAME__________Apache Dolphinscheduler information disclosurePlatforms Affected:Apache DolphinScheduler 3.0.0 Apache DolphinScheduler 3.2.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Dolphinscheduler could allow a remote attacker to...
Serenity cross-site scripting | CVE-2024-26318
NAME__________Serenity cross-site scriptingPlatforms Affected:Serenity Serenity 6.7.0Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Serenity is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Commend WS 203V I CM Resistant Station information disclosure | CVE-2024-23492
NAME__________Commend WS 203V I CM Resistant Station information disclosurePlatforms Affected:Commend WS 203V I CM Resistant Station 1.3Risk Level:5.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Commend...
Multiple ELECOM wireless LAN routers command execution | CVE-2024-25579
NAME__________Multiple ELECOM wireless LAN routers command executionPlatforms Affected:ELECOM WRC-1167GS2-B 1.67 ELECOM WRC-1167GS2H-B 1.67 ELECOM WRC-2533GS2-B 1.62 ELECOM WRC-2533GS2-W 1.62 ELECOM...
Liferay Portal and DXP security bypass | CVE-2024-25604
NAME__________Liferay Portal and DXP security bypassPlatforms Affected:Liferay DXP 7.3.10-dxp-2 Liferay Portal 7.4.13 Liferay DXP 7.2.10-dxp-16Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Liferay Portal and...
Mozilla Firefox denial of service | CVE-2024-1556
NAME__________Mozilla Firefox denial of servicePlatforms Affected:Mozilla Firefox 122Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Mozilla Firefox is vulnerable to a denial of service,...
VMware Enhanced Authentication Plug-in session hijacking | CVE-2024-22250
NAME__________VMware Enhanced Authentication Plug-in session hijackingPlatforms Affected:VMware Enhanced Authentication Plug-inRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________VMware Enhanced Authentication Plug-in could allow a local...
Mozilla Firefox HTTP header injection | CVE-2024-1551
NAME__________Mozilla Firefox HTTP header injectionPlatforms Affected:Mozilla Firefox 122 Mozilla Firefox ESR 115.7 Mozilla Thunderbird 115.7Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mozilla Firefox is...
Mozilla Firefox cache poisoning | CVE-2024-1554
NAME__________Mozilla Firefox cache poisoningPlatforms Affected:Mozilla Firefox 122Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mozilla Firefox is vulnerable to dns cache poisoning, caused by the...
Mozilla Firefox spoofing | CVE-2024-1548
NAME__________Mozilla Firefox spoofingPlatforms Affected:Mozilla Firefox 122 Mozilla Firefox ESR 115.7 Mozilla Thunderbird 115.7Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mozilla Firefox could allow a...
Mozilla Firefox spoofing | CVE-2024-1547
NAME__________Mozilla Firefox spoofingPlatforms Affected:Mozilla Firefox 122 Mozilla Firefox ESR 115.7 Mozilla Thunderbird 115.7Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mozilla Firefox could allow a...
Google Chrome security bypass | CVE-2024-1672
NAME__________Google Chrome security bypassPlatforms Affected:Google Chrome 122.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security restrictions,...
Google Chrome security bypass | CVE-2024-1674
NAME__________Google Chrome security bypassPlatforms Affected:Google Chrome 122.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security restrictions,...
Google Chrome security bypass | CVE-2024-1671
NAME__________Google Chrome security bypassPlatforms Affected:Google Chrome 122.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security restrictions,...
Google Chrome security bypass | CVE-2024-1675
NAME__________Google Chrome security bypassPlatforms Affected:Google Chrome 122.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security restrictions,...
Restaurant POS System cross-site scripting | CVE-2024-1266
NAME__________Restaurant POS System cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Restaurant POS System is vulnerable to cross-site scripting, caused by improper validation...
