CVE Alert: CVE-2024-24914
Vulnerability Summary: CVE-2024-24914 Authenticated Gaia users can inject code or commands by global variables through special HTTP requests. A Security...
CVE
CVE Alert: CVE-2024-51504
Vulnerability Summary: CVE-2024-51504 When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing --...
CVE Alert: CVE-2024-43428
Vulnerability Summary: CVE-2024-43428 To address a cache poisoning risk in Moodle, additional validation for local storage was required. Affected Endpoints:...
CVE Alert: CVE-2024-43436
Vulnerability Summary: CVE-2024-43436 A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. Affected...
CVE Alert: CVE-2024-43440
Vulnerability Summary: CVE-2024-43440 A flaw was found in moodle. A local file may include risks when restoring block backups. Affected...
CVE Alert: CVE-2024-43438
Vulnerability Summary: CVE-2024-43438 A flaw was found in Feedback. Bulk messaging in the activity's non-respondents report did not verify message...
CVE Alert: CVE-2024-43425
Vulnerability Summary: CVE-2024-43425 A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk...
CVE Alert: CVE-2024-43426
Vulnerability Summary: CVE-2024-43426 A flaw was found in pdfTeX. Insufficient sanitizing in the TeX notation filter resulted in an arbitrary...
CVE Alert: CVE-2024-43434
Vulnerability Summary: CVE-2024-43434 The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check,...
CVE Alert: CVE-2024-9926
Vulnerability Summary: CVE-2024-9926 The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any...
CVE Alert: CVE-2024-10963
Vulnerability Summary: CVE-2024-10963 A vulnerability was found in pam_access due to the improper handling of tokens in access.conf, interpreted as...
CVE Alert: CVE-2024-8378
Vulnerability Summary: CVE-2024-8378 The Safe SVG WordPress plugin before 2.2.6 has its sanitisation code is only running for paths that...
CVE Alert: CVE-2024-10965
Vulnerability Summary: CVE-2024-10965 A vulnerability classified as problematic was found in emqx neuron up to 2.10.0. Affected by this vulnerability...
CVE Alert: CVE-2024-48951
Vulnerability Summary: CVE-2024-48951 An issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery (SSRF) on SOAR can be used...
CVE Alert: CVE-2024-48952
Vulnerability Summary: CVE-2024-48952 An issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate...
CVE Alert: CVE-2024-48953
Vulnerability Summary: CVE-2024-48953 An issue was discovered in Logpoint before 7.5.0. Endpoints for creating, editing, or deleting third-party authentication modules...
CVE Alert: CVE-2024-48954
Vulnerability Summary: CVE-2024-48954 An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector setup by an...
CVE Alert: CVE-2024-10964
Vulnerability Summary: CVE-2024-10964 A vulnerability classified as critical has been found in emqx neuron up to 2.10.0. Affected is the...
CVE Alert: CVE-2024-40715
Vulnerability Summary: CVE-2024-40715 A vulnerability in Veeam Backup & Replication Enterprise Manager has been identified, which allows attackers to perform...
CVE Alert: CVE-2020-11919
Vulnerability Summary: CVE-2020-11919 An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. There is no CSRF protection. Affected Endpoints: No affected...
CVE Alert: CVE-2024-48950
Vulnerability Summary: CVE-2024-48950 An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed,...
CVE Alert: CVE-2020-11917
Vulnerability Summary: CVE-2020-11917 An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. It uses a default SSID value, which makes it...
CVE Alert: CVE-2020-11918
Vulnerability Summary: CVE-2020-11918 An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is created through the web...
CVE Alert: CVE-2024-10967
Vulnerability Summary: CVE-2024-10967 A vulnerability was found in code-projects E-Health Care System 1.0. It has been classified as critical. Affected...
