CVE Alert: CVE-2024-45763
Vulnerability Summary: CVE-2024-45763 Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an...
Vulnerabilities
CVE Alert: CVE-2024-52001
Vulnerability Summary: CVE-2024-52001 Combodo iTop is a simple, web based IT Service Management tool. In affected versions portal users are...
CVE Alert: CVE-2024-11026
Vulnerability Summary: CVE-2024-11026 A vulnerability was found in Intelligent Apps Freenow App 12.10.0 on Android. It has been rated as...
CVE Alert: CVE-2024-52002
Vulnerability Summary: CVE-2024-52002 Combodo iTop is a simple, web based IT Service Management tool. Several url endpoints are subject to...
CVE Alert: CVE-2024-52000
Vulnerability Summary: CVE-2024-52000 Combodo iTop is a simple, web based IT Service Management tool. Affected versions are subject to a...
CVE Alert: CVE-2024-52007
Vulnerability Summary: CVE-2024-52007 HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. XSLT...
CVE Alert: CVE-2024-43431
Vulnerability Summary: CVE-2024-43431 A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a...
CVE Alert: CVE-2024-8442
Vulnerability Summary: CVE-2024-8442 The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) plugin for...
CVE Alert: CVE-2024-24914
Vulnerability Summary: CVE-2024-24914 Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security...
CVE Alert: CVE-2024-51504
Vulnerability Summary: CVE-2024-51504 When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing --...
CVE Alert: CVE-2024-43428
Vulnerability Summary: CVE-2024-43428 To address a cache poisoning risk in Moodle, additional validation for local storage was required. Affected Endpoints:...
CVE Alert: CVE-2024-43436
Vulnerability Summary: CVE-2024-43436 A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. Affected...
CVE Alert: CVE-2024-43440
Vulnerability Summary: CVE-2024-43440 A flaw was found in moodle. A local file may include risks when restoring block backups. Affected...
CVE Alert: CVE-2024-43438
Vulnerability Summary: CVE-2024-43438 A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message...
CVE Alert: CVE-2024-43425
Vulnerability Summary: CVE-2024-43425 A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk...
CVE Alert: CVE-2024-43426
Vulnerability Summary: CVE-2024-43426 A flaw was found in pdfTeX. Insufficient sanitizing in the TeX notation filter resulted in an arbitrary...
CVE Alert: CVE-2024-8378
Vulnerability Summary: CVE-2024-8378 The Safe SVG WordPress plugin before 2.2.6 has its sanitisation code is only running for paths that...
CVE Alert: CVE-2024-10965
Vulnerability Summary: CVE-2024-10965 A vulnerability classified as problematic was found in emqx neuron up to 2.10.0. Affected by this vulnerability...
CVE Alert: CVE-2024-43434
Vulnerability Summary: CVE-2024-43434 The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check,...
CVE Alert: CVE-2024-9926
Vulnerability Summary: CVE-2024-9926 The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any...
CVE Alert: CVE-2024-10963
Vulnerability Summary: CVE-2024-10963 A vulnerability was found in pam_access due to the improper handling of tokens in access.conf, interpreted as...
CVE Alert: CVE-2024-48951
Vulnerability Summary: CVE-2024-48951 An issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery (SSRF) on SOAR can be used...
CVE Alert: CVE-2024-48952
Vulnerability Summary: CVE-2024-48952 An issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate...
CVE Alert: CVE-2024-48953
Vulnerability Summary: CVE-2024-48953 An issue was discovered in Logpoint before 7.5.0. Endpoints for creating, editing, or deleting third-party authentication modules...
