CVE Alert: CVE-2024-56350
Vulnerability Summary: CVE-2024-56350 In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects Affected Endpoints: No affected endpoints...
Vulnerabilities
CVE Alert: CVE-2024-56352
Vulnerability Summary: CVE-2024-56352 In JetBrains TeamCity before 2024.12 stored XSS was possible via image name on the agent details page...
CVE Alert: CVE-2024-56351
Vulnerability Summary: CVE-2024-56351 In JetBrains TeamCity before 2024.12 access tokens were not revoked after removing user roles Affected Endpoints: No...
CVE Alert: CVE-2024-40695
Vulnerability Summary: CVE-2024-40695 IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and 12.0.0 through 12.0.4 could be vulnerable to malicious file...
CVE Alert: CVE-2024-56348
Vulnerability Summary: CVE-2024-56348 In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agents Affected Endpoints: No...
CVE Alert: CVE-2024-56354
Vulnerability Summary: CVE-2024-56354 In JetBrains TeamCity before 2024.12 password field value were accessible to users with view settings permission Affected...
CVE Alert: CVE-2024-56353
Vulnerability Summary: CVE-2024-56353 In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies Affected Endpoints: No affected...
CVE Alert: CVE-2024-56356
Vulnerability Summary: CVE-2024-56356 In JetBrains TeamCity before 2024.12 insecure XMLParser configuration could lead to potential XXE attack Affected Endpoints: No...
CVE Alert: CVE-2024-56355
Vulnerability Summary: CVE-2024-56355 In JetBrains TeamCity before 2024.12 missing Content-Type header in RemoteBuildLogController response could lead to XSS Affected Endpoints:...
CVE Alert: CVE-2024-56349
Vulnerability Summary: CVE-2024-56349 In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify build logs Affected Endpoints:...
CVE Alert: CVE-2024-55470
Vulnerability Summary: CVE-2024-55470 Oqtane Framework 6.0.0 is vulnerable to Incorrect Access Control. By manipulating the entityid parameter, attackers can bypass...
CVE Alert: CVE-2024-12840
Vulnerability Summary: CVE-2024-12840 A server-side request forgery exists in Satellite. When a PUT HTTP request is made to /http_proxies/test_connection, when...
CVE Alert: CVE-2024-12677
Vulnerability Summary: CVE-2024-12677 Delta Electronics DTM Soft deserializes objects, which could allow an attacker to execute arbitrary code. Affected Endpoints:...
CVE Alert: CVE-2024-55186
Vulnerability Summary: CVE-2024-55186 An IDOR (Insecure Direct Object Reference) vulnerability exists in oqtane Framework 6.0.0, allowing a logged-in user to...
CVE Alert: CVE-2024-55471
Vulnerability Summary: CVE-2024-55471 Oqtane Framework is vulnerable to Insecure Direct Object Reference (IDOR) in Oqtane.Controllers.UserController. This allows unauthorized users to...
CVE Alert: CVE-2024-37758
Vulnerability Summary: CVE-2024-37758 Improper access control in the endpoint /RoleMenuMapping/AddRoleMenu of Digiteam v4.21.0.0 allows authenticated attackers to escalate privileges. Affected...
CVE Alert: CVE-2024-55341
Vulnerability Summary: CVE-2024-55341 A stored cross-site scripting (XSS) vulnerability in Piranha CMS 11.1 allows remote attackers to execute arbitrary JavaScript...
CVE Alert: CVE-2024-55342
Vulnerability Summary: CVE-2024-55342 A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF...
CVE Alert: CVE-2024-12842
Vulnerability Summary: CVE-2024-12842 A vulnerability was found in Emlog Pro up to 2.4.1. It has been declared as problematic. This...
CVE Alert: CVE-2024-12841
Vulnerability Summary: CVE-2024-12841 A vulnerability was found in Emlog Pro up to 2.4.1. It has been classified as problematic. This...
CVE Alert: CVE-2024-56358
Vulnerability Summary: CVE-2024-56358 grist-core is a spreadsheet hosting server. A user visiting a malicious document and previewing an attachment could...
CVE Alert: CVE-2024-56331
Vulnerability Summary: CVE-2024-56331 Uptime Kuma is an open source, self-hosted monitoring tool. An **Improper URL Handling Vulnerability** allows an attacker...
CVE Alert: CVE-2024-12843
Vulnerability Summary: CVE-2024-12843 A vulnerability was found in Emlog Pro up to 2.4.1. It has been rated as problematic. This...
CVE Alert: CVE-2024-12844
Vulnerability Summary: CVE-2024-12844 A vulnerability classified as problematic has been found in Emlog Pro up to 2.4.1. Affected is an...
