CVE Alert: CVE-2024-11806
Vulnerability Summary: CVE-2024-11806 The PKT1 Centro de envios plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'success'...
Vulnerabilities
CVE Alert: CVE-2024-11784
Vulnerability Summary: CVE-2024-11784 The Sell Tickets Online – TicketSource Ticket Shop for WordPress plugin for WordPress is vulnerable to Stored...
CVE Alert: CVE-2024-28767
Vulnerability Summary: CVE-2024-28767 IBM Security Directory Integrator 7.2.0 through 7.2.0.13 and 10.0.0 through 10.0.3 could allow a remote authenticated attacker...
CVE Alert: CVE-2024-51466
Vulnerability Summary: CVE-2024-51466 IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and 12.0.0 through 12.0.4 is vulnerable to an Expression Language...
CVE Alert: CVE-2024-12014
Vulnerability Summary: CVE-2024-12014 Path Traversal and Insecure Direct Object Reference (IDOR) vulnerabilities in the eSignaViewer component in eSigna product versions...
CVE Alert: CVE-2024-7726
Vulnerability Summary: CVE-2024-7726 There exists an unauthenticated accessible JTAG port on the Kioxia PM6, PM7 and CM6 devices - On...
CVE Alert: CVE-2024-12509
Vulnerability Summary: CVE-2024-12509 The Embed Twine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'embed_twine' shortcode...
CVE Alert: CVE-2024-56352
Vulnerability Summary: CVE-2024-56352 In JetBrains TeamCity before 2024.12 stored XSS was possible via image name on the agent details page...
CVE Alert: CVE-2024-56351
Vulnerability Summary: CVE-2024-56351 In JetBrains TeamCity before 2024.12 access tokens were not revoked after removing user roles Affected Endpoints: No...
CVE Alert: CVE-2024-40695
Vulnerability Summary: CVE-2024-40695 IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and 12.0.0 through 12.0.4 could be vulnerable to malicious file...
CVE Alert: CVE-2024-56348
Vulnerability Summary: CVE-2024-56348 In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agents Affected Endpoints: No...
CVE Alert: CVE-2024-56350
Vulnerability Summary: CVE-2024-56350 In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2024-56354
Vulnerability Summary: CVE-2024-56354 In JetBrains TeamCity before 2024.12 password field value were accessible to users with view settings permission Affected...
CVE Alert: CVE-2024-56353
Vulnerability Summary: CVE-2024-56353 In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies Affected Endpoints: No affected...
CVE Alert: CVE-2024-56356
Vulnerability Summary: CVE-2024-56356 In JetBrains TeamCity before 2024.12 insecure XMLParser configuration could lead to potential XXE attack Affected Endpoints: No...
CVE Alert: CVE-2024-56355
Vulnerability Summary: CVE-2024-56355 In JetBrains TeamCity before 2024.12 missing Content-Type header in RemoteBuildLogController response could lead to XSS Affected Endpoints:...
CVE Alert: CVE-2024-56349
Vulnerability Summary: CVE-2024-56349 In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify build logs Affected Endpoints:...
CVE Alert: CVE-2024-55470
Vulnerability Summary: CVE-2024-55470 Oqtane Framework 6.0.0 is vulnerable to Incorrect Access Control. By manipulating the entityid parameter, attackers can bypass...
CVE Alert: CVE-2024-12840
Vulnerability Summary: CVE-2024-12840 A server-side request forgery exists in Satellite. When a PUT HTTP request is made to /http_proxies/test_connection, when...
CVE Alert: CVE-2024-12677
Vulnerability Summary: CVE-2024-12677 Delta Electronics DTM Soft deserializes objects, which could allow an attacker to execute arbitrary code. Affected Endpoints:...
CVE Alert: CVE-2024-55186
Vulnerability Summary: CVE-2024-55186 An IDOR (Insecure Direct Object Reference) vulnerability exists in oqtane Framework 6.0.0, allowing a logged-in user to...
CVE Alert: CVE-2024-55471
Vulnerability Summary: CVE-2024-55471 Oqtane Framework is vulnerable to Insecure Direct Object Reference (IDOR) in Oqtane.Controllers.UserController. This allows unauthorized users to...
CVE Alert: CVE-2024-55341
Vulnerability Summary: CVE-2024-55341 A stored cross-site scripting (XSS) vulnerability in Piranha CMS 11.1 allows remote attackers to execute arbitrary JavaScript...
CVE Alert: CVE-2024-55342
Vulnerability Summary: CVE-2024-55342 A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF...
