CVE Alert: CVE-2024-43989
Vulnerability Summary: CVE-2024-43989 Server-Side Request Forgery (SSRF) vulnerability in Firsh Justified Image Grid allows Server Side Request Forgery.This issue affects...
Vulnerability Summary: CVE-2024-43989 Server-Side Request Forgery (SSRF) vulnerability in Firsh Justified Image Grid allows Server Side Request Forgery.This issue affects...
Vulnerability Summary: CVE-2024-9093 A vulnerability classified as critical has been found in SourceCodester Profile Registration without Reload Refresh 1.0. This...
Vulnerability Summary: CVE-2024-45453 Authentication Bypass by Spoofing vulnerability in Peter Hardy-vanDoorn Maintenance Redirect allows Accessing Functionality Not Properly Constrained by...
Vulnerability Summary: CVE-2024-9092 A vulnerability was found in SourceCodester Profile Registration without Reload Refresh 1.0. It has been rated as...
Vulnerability Summary: CVE-2024-44048 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in wpWax Product Carousel Slider...
Vulnerability Summary: CVE-2024-43996 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ElementsKit ElementsKit Pro allows...
Altered versions of legitimate Android apps associated with Spotify, WhatsApp, and Minecraft have been used to deliver a new version...
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Ransomware Group: BIANLIAN VICTIM NAME: First Choice Sales & Marketing Group (First Choice) NOTE: No files or stolen information are...
Ransomware Group: CICADA3301 VICTIM NAME: Crown Mortgage Company NOTE: No files or stolen information are by RedPacket Security. Any legal...
Antivirus vendor Kaspersky has formally begun pulling back its offerings in the U.S., migrating existing users to UltraAV, effective September...
The U.S. Department of Commerce (DoC) said it's proposing a ban on the import or sale of connected vehicles that...
Ransomware is no longer just a threat; it's an entire industry. Cybercriminals are growing more sophisticated, and their tactics are...
Vulnerability Summary: CVE-2024-9094 A vulnerability classified as critical was found in code-projects Blood Bank System 1.0. This vulnerability affects unknown...
Vulnerability Summary: CVE-2024-7846 YITH WooCommerce Ajax Search is vulnerable to a XSS vulnerability due to insufficient sanitization of user supplied...
Vulnerability Summary: CVE-2024-46241 PHPGurukul Dairy Farm Shop Management System v1.1 is vulnerable to Cross-Site Scripting (XSS) via the pname parameter...
Vulnerability Summary: CVE-2024-45348 Xiaomi Router AX9000 has a post-authorization command injection vulnerability. This vulnerability is caused by the lack of...
Vulnerability Summary: CVE-2024-8903 Local active protection service settings manipulation due to unnecessary privileges assignment. The following products are affected: Acronis...
Vulnerability Summary: CVE-2024-23972 Sony XAV-AX5500 USB Configuration Descriptor Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows physically present attackers...
Vulnerability Summary: CVE-2024-23934 Sony XAV-AX5500 WMV/ASF Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to...
Vulnerability Summary: CVE-2024-23933 Sony XAV-AX5500 CarPlay TLV Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows physically present attackers...
Vulnerability Summary: CVE-2024-41228 A symlink following vulnerability in the pouch cp function of AliyunContainerService pouch v1.3.1 allows attackers to escalate...
Vulnerability Summary: CVE-2024-23922 Sony XAV-AX5500 Insufficient Firmware Update Validation Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to...
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on September 24, 2024. These...