CVE

CVE Alert: CVE-2024-10301

October 24, 2024

Vulnerability Summary: CVE-2024-10301 A vulnerability, which was classified as critical, was found in PHPGurukul Medical Card Generation System 1.0. Affected...

CVE Alert: CVE-2024-48964

October 24, 2024

Vulnerability Summary: CVE-2024-48964 The package Snyk CLI before 1.1294.0 is vulnerable to Code Injection when scanning an untrusted Gradle project....

CVE Alert: CVE-2024-48963

October 24, 2024

Vulnerability Summary: CVE-2024-48963 The package Snyk CLI before 1.1294.0 is vulnerable to Code Injection when scanning an untrusted PHP project....

CVE Alert: CVE-2024-9590

October 24, 2024

Vulnerability Summary: CVE-2024-9590 The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2024-9591

October 24, 2024

Vulnerability Summary: CVE-2024-9591 The Category and Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_category_image'...

CVE Alert: CVE-2024-9541

October 24, 2024

Vulnerability Summary: CVE-2024-9541 The News Kit Elementor Addons plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions...

CVE Alert: CVE-2024-9589

October 24, 2024

Vulnerability Summary: CVE-2024-9589 The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2024-9588

October 24, 2024

Vulnerability Summary: CVE-2024-9588 The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions...

CVE Alert: CVE-2024-9231

October 24, 2024

Vulnerability Summary: CVE-2024-9231 The WP-Members Membership Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use...

CVE Alert: CVE-2024-10234

October 24, 2024

Vulnerability Summary: CVE-2024-10234 A vulnerability was found in Wildfly, where a user may perform Cross-site scripting in the Wildfly deployment...

CVE Alert: CVE-2024-50312

October 24, 2024

Vulnerability Summary: CVE-2024-50312 A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection query. This...

CVE Alert: CVE-2024-9050

October 24, 2024

Vulnerability Summary: CVE-2024-9050 A flaw was found in the libreswan client plugin for NetworkManager (NetkworkManager-libreswan), where it fails to properly...

CVE Alert: CVE-2024-10189

October 24, 2024

Vulnerability Summary: CVE-2024-10189 The Anchor Episodes Index (Spotify for Podcasters) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...

CVE Alert: CVE-2024-43173

October 23, 2024

Vulnerability Summary: CVE-2024-43173 IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the...

CVE Alert: CVE-2024-26272

October 23, 2024

Vulnerability Summary: CVE-2024-26272 Cross-site request forgery (CSRF) vulnerability in the content page editor in Liferay Portal 7.3.2 through 7.4.3.107, and...

CVE Alert: CVE-2024-26273

October 23, 2024

Vulnerability Summary: CVE-2024-26273 Cross-site request forgery (CSRF) vulnerability in the content page editor in Liferay Portal 7.4.0 through 7.4.3.103, and...

CVE Alert: CVE-2024-50311

October 23, 2024

Vulnerability Summary: CVE-2024-50311 A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to exploit the...

CVE Alert: CVE-2024-26271

October 23, 2024

Vulnerability Summary: CVE-2024-26271 Cross-site request forgery (CSRF) vulnerability in the My Account widget in Liferay Portal 7.4.3.75 through 7.4.3.111, and...

CVE Alert: CVE-2024-8980

October 23, 2024

Vulnerability Summary: CVE-2024-8980 The Script Console in Liferay Portal 7.0.0 through 7.4.3.101, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA...

CVE Alert: CVE-2024-38002

October 23, 2024

Vulnerability Summary: CVE-2024-38002 The workflow component in Liferay Portal 7.3.2 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through...

CVE Alert: CVE-2022-23861

October 23, 2024

Vulnerability Summary: CVE-2022-23861 Multiple Stored Cross-Site Scripting vulnerabilities were discovered in Y Soft SAFEQ 6 Build 53. Multiple fields in...

CVE Alert: CVE-2024-43177

October 23, 2024

Vulnerability Summary: CVE-2024-43177 IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the...

CVE Alert: CVE-2022-23862

October 23, 2024

Vulnerability Summary: CVE-2022-23862 A Local Privilege Escalation issue was discovered in Y Soft SAFEQ 6 Build 53. The SafeQ JMX...

CVE Alert: CVE-2024-48605

October 23, 2024

Vulnerability Summary: CVE-2024-48605 An issue in Helakuru Desktop Application v1.1 allows a local attacker to execute arbitrary code via the...

CVE

CVE Alert: CVE-2024-10301

CVE Alert: CVE-2024-48964

CVE Alert: CVE-2024-48963

CVE Alert: CVE-2024-9590

CVE Alert: CVE-2024-9591

CVE Alert: CVE-2024-9541

CVE Alert: CVE-2024-9589

CVE Alert: CVE-2024-9588

CVE Alert: CVE-2024-9231

CVE Alert: CVE-2024-10234

CVE Alert: CVE-2024-50312

CVE Alert: CVE-2024-9050

CVE Alert: CVE-2024-10189

CVE Alert: CVE-2024-43173

CVE Alert: CVE-2024-26272

CVE Alert: CVE-2024-26273

CVE Alert: CVE-2024-50311

CVE Alert: CVE-2024-26271

CVE Alert: CVE-2024-8980

CVE Alert: CVE-2024-38002

CVE Alert: CVE-2022-23861

CVE Alert: CVE-2024-43177

CVE Alert: CVE-2022-23862

CVE Alert: CVE-2024-48605

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies

CISA: Microsoft Releases December 2024 Security Updates

CISA: Ivanti Releases Security Updates for Multiple Products

CISA: Cisco Releases Security Updates for NX-OS Software

You may have missed