CVE Alert: CVE-2024-51740
Vulnerability Summary: CVE-2024-51740 Combodo iTop is a simple, web based IT Service Management tool. This vulnerability can be used to...
Vulnerabilities
CVE Alert: CVE-2024-47460
Vulnerability Summary: CVE-2024-47460 Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending...
CVE Alert: CVE-2024-42509
Vulnerability Summary: CVE-2024-42509 Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending...
CVE Alert: CVE-2024-47463
Vulnerability Summary: CVE-2024-47463 An arbitrary file creation vulnerability exists in the Instant AOS-8 and AOS-10 command line interface. Successful exploitation...
CVE Alert: CVE-2024-47464
Vulnerability Summary: CVE-2024-47464 An authenticated Path Traversal vulnerability exists in Instant AOS-8 and AOS-10. Successful exploitation of this vulnerability allows...
CVE Alert: CVE-2024-47461
Vulnerability Summary: CVE-2024-47461 An authenticated command injection vulnerability exists in the Instant AOS-8 and AOS-10 command line interface. A successful...
CVE Alert: CVE-2024-51665
Vulnerability Summary: CVE-2024-51665 Server-Side Request Forgery (SSRF) vulnerability in Noor alam Magical Addons For Elementor allows Server Side Request Forgery.This...
CVE Alert: CVE-2024-51582
Vulnerability Summary: CVE-2024-51582 Path Traversal: '.../...//' vulnerability in ThimPress WP Hotel Booking allows PHP Local File Inclusion.This issue affects WP...
CVE Alert: CVE-2024-50526
Vulnerability Summary: CVE-2024-50526 Unrestricted Upload of File with Dangerous Type vulnerability in mahlamusa Multi Purpose Mail Form allows Upload a...
CVE Alert: CVE-2024-50528
Vulnerability Summary: CVE-2024-50528 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Stacks Stacks Mobile App Builder...
CVE Alert: CVE-2024-50527
Vulnerability Summary: CVE-2024-50527 Unrestricted Upload of File with Dangerous Type vulnerability in Stacks Stacks Mobile App Builder allows Upload a...
CVE Alert: CVE-2024-51246
Vulnerability Summary: CVE-2024-51246 In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling...
CVE Alert: CVE-2024-51249
Vulnerability Summary: CVE-2024-51249 In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling...
CVE Alert: CVE-2024-51408
Vulnerability Summary: CVE-2024-51408 AppSmith Community 1.8.3 before 1.46 allows SSRF via New DataSource for application/json requests to 169.254.169.254 to retrieve...
CVE Alert: CVE-2024-51251
Vulnerability Summary: CVE-2024-51251 In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling...
CVE Alert: CVE-2024-51253
Vulnerability Summary: CVE-2024-51253 In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling...
CVE Alert: CVE-2024-45882
Vulnerability Summary: CVE-2024-45882 DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi`...
CVE Alert: CVE-2024-51672
Vulnerability Summary: CVE-2024-51672 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPDeveloper BetterLinks allows...
CVE Alert: CVE-2024-50531
Vulnerability Summary: CVE-2024-50531 Unrestricted Upload of File with Dangerous Type vulnerability in David F. Carr RSVPMaker for Toastmasters allows Upload...
CVE Alert: CVE-2024-45884
Vulnerability Summary: CVE-2024-45884 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-51677
Vulnerability Summary: CVE-2024-51677 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WebberZone Knowledge Base...
CVE Alert: CVE-2024-45891
Vulnerability Summary: CVE-2024-45891 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-45889
Vulnerability Summary: CVE-2024-45889 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-45893
Vulnerability Summary: CVE-2024-45893 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
