libdicom code execution | CVE-2024-24794
NAME__________libdicom code executionPlatforms Affected:Imaging Data Commons libdicom 1.0.5 Imaging Data Commons libdicom 1.0.4 Imaging Data Commons libdicom 1.0.3 Imaging Data...
CVE
Archer Technologies Archer Platform cross-site scripting | CVE-2024-26311
NAME__________Archer Technologies Archer Platform cross-site scriptingPlatforms Affected:Archer Archer Platform 6.9.3.3 Archer Archer Platform 6.10.0.2Risk Level:5.7Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Archer Technologies Archer Platform...
Kirby CMS HTML injection | CVE-2024-26482
NAME__________Kirby CMS HTML injectionPlatforms Affected:Kirby Kirby CMS 4.1.0Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Kirby CMS is vulnerable to HTML injection. A...
flusity CMS cross-site request forgery | CVE-2024-26352
NAME__________flusity CMS cross-site request forgeryPlatforms Affected:flusity CMS flusity CMS 2.33Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________is vulnerable to cross-site request forgery, caused by...
flusity CMS cross-site request forgery | CVE-2024-26351
NAME__________flusity CMS cross-site request forgeryPlatforms Affected:flusity CMS flusity CMS 2.33Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________flusity CMS is vulnerable to cross-site request forgery,...
flusity CMS cross-site request forgery | CVE-2024-26350
NAME__________flusity CMS cross-site request forgeryPlatforms Affected:flusity CMS flusity CMS 2.33Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________flusity CMS is vulnerable to cross-site request forgery,...
Silicon Labs PC Controller security bypass | CVE-2023-6533
NAME__________Silicon Labs PC Controller security bypassPlatforms Affected:Silicon Labs PC Controller 5.54.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Silicon Labs PC Controller could allow a...
Kirby CMS file upload | CVE-2024-26483
NAME__________Kirby CMS file uploadPlatforms Affected:Kirby Kirby CMS 4.1.0Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Kirby CMS could allow a remote attacker to...
flusity CMS cross-site request forgery | CVE-2024-26349
NAME__________flusity CMS cross-site request forgeryPlatforms Affected:flusity CMS flusity CMS 2.33Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________flusity CMS is vulnerable to cross-site request forgery,...
ShopWind code execution | CVE-2024-1705
NAME__________ShopWind code executionPlatforms Affected:ShopWind ShopWind 3.4.2 ShopWind ShopWind 3.4.1 ShopWind ShopWind 3.4.3Risk Level:5.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ShopWind could allow a remote attacker...
Apache Camel information disclosure | CVE-2024-22371
NAME__________Apache Camel information disclosurePlatforms Affected:Apache Camel 3.0.0 Apache Camel 3.21.3 Apache Camel 3.22.0 Apache Camel 4.0.0 Apache Camel 4.0.3 Apache...
Kirby CMS cross-site scripting | CVE-2024-26481
NAME__________Kirby CMS cross-site scriptingPlatforms Affected:Kirby Kirby CMS 4.1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Kirby CMS is vulnerable to cross-site scripting, caused by improper...
Mozilla Focus for iOS cross-site scripting | CVE-2024-26284
NAME__________Mozilla Focus for iOS cross-site scriptingPlatforms Affected:Mozilla Focus for iOS 122Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Mozilla Focus for iOS is vulnerable to...
Mozilla Firefox for iOS cross-site scripting | CVE-2024-26282
NAME__________Mozilla Firefox for iOS cross-site scriptingPlatforms Affected:Mozilla Firefox for iOS 122Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Mozilla Firefox for iOS is vulnerable to...
VMware Aria Operations privilege escalation | CVE-2024-22235
NAME__________VMware Aria Operations privilege escalationPlatforms Affected:VMware Aria Operations 8 VMware Cloud Foundation (VMware Aria Operations) 5 VMware Cloud Foundation (VMware...
GitLab Enterprise Edition security bypass | CVE-2024-0861
NAME__________GitLab Enterprise Edition security bypassPlatforms Affected:GitLab Enterprise Edition 16.4.0 GitLab Enterprise Edition 16.8 GitLab Enterprise Edition 16.9Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________GitLab...
Mozilla Firefox for iOS cross-site scripting | CVE-2024-26283
NAME__________Mozilla Firefox for iOS cross-site scriptingPlatforms Affected:Mozilla Firefox for iOS 122Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Mozilla Firefox for iOS is vulnerable to...
GitLab security bypass | CVE-2023-3509
NAME__________GitLab security bypassPlatforms Affected:GitLab GitLab 16.8 GitLab GitLab 16.9Risk Level:3.7Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________GitLab could allow a remote authenticated attacker to bypass...
cryptography denial of service | CVE-2024-26130
NAME__________cryptography denial of servicePlatforms Affected:Python Cryptographic Authority cryptography 42.0.4Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________cryptography is vulnerable to a denial of service,...
Yealink Configuration Encrypt Tool information disclosure | CVE-2024-24681
NAME__________Yealink Configuration Encrypt Tool information disclosurePlatforms Affected:Yealink Configuration Encrypt Tool 1.1Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Yealink Configuration Encrypt Tool could allow a...
Node Access Rebuild Progressive module for Drupal information disclosure |
NAME__________Node Access Rebuild Progressive module for Drupal information disclosurePlatforms Affected:Drupal Node Access Rebuild Progressive module for Drupal 2.0.1Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information...
GitLab Community and Enterprise Edition security bypass | CVE-2024-1525
NAME__________GitLab Community and Enterprise Edition security bypassPlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Community Edition 16.1.0 GitLab Community Edition 16.8.0 GitLab...
Mozilla Firefox for iOS cross-site scripting | CVE-2024-26281
NAME__________Mozilla Firefox for iOS cross-site scriptingPlatforms Affected:Mozilla Firefox for iOS 122Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Mozilla Firefox for iOS is vulnerable to...
GitLab EE privilege escalation | CVE-2023-6477
NAME__________GitLab EE privilege escalationPlatforms Affected:GitLab Enterprise Edition 16.5.0 GitLab Enterprise Edition 16.8 GitLab Enterprise Edition 16.9Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________GitLab EE...
