Vulnerabilities

CVE Alert: CVE-2024-27457

October 9, 2024

Vulnerability Summary: CVE-2024-27457 Improper check for unusual or exceptional conditions in Intel(R) TDX Module firmware before version 1.5.06 may allow...

CVE Alert: CVE-2024-47822

October 9, 2024

Vulnerability Summary: CVE-2024-47822 Directus is a real-time API and App dashboard for managing SQL database content. Access tokens from query...

CVE Alert: CVE-2024-47773

October 9, 2024

Vulnerability Summary: CVE-2024-47773 Discourse is an open source platform for community discussion. An attacker can make several XHR requests until...

CVE Alert: CVE-2024-43616

October 9, 2024

Vulnerability Summary: CVE-2024-43616 Microsoft Office Remote Code Execution Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 10/8/2024, 6:15:30 PM...

CVE Alert: CVE-2024-46539

October 9, 2024

Vulnerability Summary: CVE-2024-46539 Insecure permissions in the Bluetooth Low Energy (BLE) component of Fire-Boltt Artillery Smart Watch NJ-R6E-10.3 allow attackers...

CVE Alert: CVE-2024-9570

October 9, 2024

Vulnerability Summary: CVE-2024-9570 A vulnerability was found in D-Link DIR-619L B1 2.06 and classified as critical. Affected by this issue...

CVE Alert: CVE-2024-9576

October 9, 2024

Vulnerability Summary: CVE-2024-9576 Vulnerability in Distro Linux Workbooth v2.5 that allows to escalate privileges to the root user by manipulating...

CVE Alert: CVE-2024-9568

October 9, 2024

Vulnerability Summary: CVE-2024-9568 A vulnerability, which was classified as critical, was found in D-Link DIR-619L B1 2.06. Affected is the...

CVE Alert: CVE-2024-9573

October 9, 2024

Vulnerability Summary: CVE-2024-9573 SQL injection vulnerability in SOPlanning

CVE Alert: CVE-2024-9574

October 9, 2024

Vulnerability Summary: CVE-2024-9574 SQL injection vulnerability in SOPlanning

CVE Alert: CVE-2024-46278

October 9, 2024

Vulnerability Summary: CVE-2024-46278 Teedy 1.11 is vulnerable to Cross Site Scripting (XSS) via the management console. Affected Endpoints: No affected...

CVE Alert: CVE-2024-46300

October 9, 2024

Vulnerability Summary: CVE-2024-46300 itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field...

CVE Alert: CVE-2024-45932

October 9, 2024

Vulnerability Summary: CVE-2024-45932 Krayin CRM v1.3.0 is vulnerable to Cross Site Scripting (XSS) via the organization name field in /admin/contacts/organizations/edit/2....

CVE Alert: CVE-2024-46041

October 9, 2024

Vulnerability Summary: CVE-2024-46041 IoT Haat Smart Plug IH-IN-16A-S v5.16.1 is vulnerable to Authentication Bypass by Capture-replay. Affected Endpoints: No affected...

CVE Alert: CVE-2024-46446

October 9, 2024

Vulnerability Summary: CVE-2024-46446 Mecha CMS 3.0.0 is vulnerable to Directory Traversal. An attacker can construct cookies and URIs that bypass...

CVE Alert: CVE-2024-42831

October 8, 2024

Vulnerability Summary: CVE-2024-42831 A reflected cross-site scripting (XSS) vulnerability in Elaine's Realtime CRM Automation v6.18.17 allows attackers to execute arbitrary...

CVE Alert: CVE-2024-47555

October 8, 2024

Vulnerability Summary: CVE-2024-47555 Missing Authentication - User & System Configuration Affected Endpoints: No affected endpoints listed. Published Date: 10/7/2024, 6:15:04...

CVE Alert: CVE-2024-44674

October 8, 2024

Vulnerability Summary: CVE-2024-44674 D-Link COVR-2600R FW101b05 is vulnerable to Buffer Overflow. In the function sub_24E28, the HTTP_REFERER is obtained through...

CVE Alert: CVE-2024-46076

October 8, 2024

Vulnerability Summary: CVE-2024-46076 RuoYi v4.7.9 and before has a security flaw that allows escaping from comments within the code generation...

CVE Alert: CVE-2024-27458

October 8, 2024

Vulnerability Summary: CVE-2024-27458 A potential security vulnerability has been identified in the HP Hotkey Support software, which might allow local...

CVE Alert: CVE-2024-47558

October 8, 2024

Vulnerability Summary: CVE-2024-47558 Authenticated RCE via Path Traversal Affected Endpoints: No affected endpoints listed. Published Date: 10/7/2024, 7:15:10 PM 🔥...

CVE Alert: CVE-2024-47557

October 8, 2024

Vulnerability Summary: CVE-2024-47557 Pre-Auth RCE via Path Traversal Affected Endpoints: No affected endpoints listed. Published Date: 10/7/2024, 7:15:10 PM 🔥...

CVE Alert: CVE-2024-47975

October 8, 2024

Vulnerability Summary: CVE-2024-47975 Improper access control validation in firmware of some Solidigm DC Products may allow an attacker with physical...

CVE Alert: CVE-2024-47559

October 8, 2024

Vulnerability Summary: CVE-2024-47559 Authenticated RCE via Path Traversal Affected Endpoints: No affected endpoints listed. Published Date: 10/7/2024, 7:15:10 PM 🔥...

Vulnerabilities

CVE Alert: CVE-2024-27457

CVE Alert: CVE-2024-47822

CVE Alert: CVE-2024-47773

CVE Alert: CVE-2024-43616

CVE Alert: CVE-2024-46539

CVE Alert: CVE-2024-9570

CVE Alert: CVE-2024-9576

CVE Alert: CVE-2024-9568

CVE Alert: CVE-2024-9573

CVE Alert: CVE-2024-9574

CVE Alert: CVE-2024-46278

CVE Alert: CVE-2024-46300

CVE Alert: CVE-2024-45932

CVE Alert: CVE-2024-46041

CVE Alert: CVE-2024-46446

CVE Alert: CVE-2024-42831

CVE Alert: CVE-2024-47555

CVE Alert: CVE-2024-44674

CVE Alert: CVE-2024-46076

CVE Alert: CVE-2024-27458

CVE Alert: CVE-2024-47558

CVE Alert: CVE-2024-47557

CVE Alert: CVE-2024-47975

CVE Alert: CVE-2024-47559

HackerOne Bug Bounty Disclosure: unauthenticated-path-traversal-and-command-injection-in-trellix-enterprise-security-manager-r-v

CVE Alert: CVE-2024-42168

CVE Alert: CVE-2024-12204

CVE Alert: CVE-2024-42169

CVE Alert: CVE-2024-12627

You may have missed