Gain Access

libdicom code execution | CVE-2024-24793

February 24, 2024

NAME__________libdicom code executionPlatforms Affected:Imaging Data Commons libdicom 1.0.5 Imaging Data Commons libdicom 1.0.4 Imaging Data Commons libdicom 1.0.3 Imaging Data...

Archer Technologies Archer Platform information disclosure | CVE-2024-26310

February 24, 2024

NAME__________Archer Technologies Archer Platform information disclosurePlatforms Affected:Archer Archer Platform 6.13.0 Archer Archer Platform 6.14.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Archer Technologies Archer Platform...

libdicom code execution | CVE-2024-24794

February 24, 2024

NAME__________libdicom code executionPlatforms Affected:Imaging Data Commons libdicom 1.0.5 Imaging Data Commons libdicom 1.0.4 Imaging Data Commons libdicom 1.0.3 Imaging Data...

Kirby CMS HTML injection | CVE-2024-26482

February 24, 2024

NAME__________Kirby CMS HTML injectionPlatforms Affected:Kirby Kirby CMS 4.1.0Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Kirby CMS is vulnerable to HTML injection. A...

flusity CMS cross-site request forgery | CVE-2024-26352

February 24, 2024

NAME__________flusity CMS cross-site request forgeryPlatforms Affected:flusity CMS flusity CMS 2.33Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________is vulnerable to cross-site request forgery, caused by...

flusity CMS cross-site request forgery | CVE-2024-26351

February 24, 2024

NAME__________flusity CMS cross-site request forgeryPlatforms Affected:flusity CMS flusity CMS 2.33Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________flusity CMS is vulnerable to cross-site request forgery,...

flusity CMS cross-site request forgery | CVE-2024-26350

February 24, 2024

NAME__________flusity CMS cross-site request forgeryPlatforms Affected:flusity CMS flusity CMS 2.33Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________flusity CMS is vulnerable to cross-site request forgery,...

Kirby CMS file upload | CVE-2024-26483

February 24, 2024

NAME__________Kirby CMS file uploadPlatforms Affected:Kirby Kirby CMS 4.1.0Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Kirby CMS could allow a remote attacker to...

flusity CMS cross-site request forgery | CVE-2024-26349

February 24, 2024

NAME__________flusity CMS cross-site request forgeryPlatforms Affected:flusity CMS flusity CMS 2.33Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________flusity CMS is vulnerable to cross-site request forgery,...

ShopWind code execution | CVE-2024-1705

February 24, 2024

NAME__________ShopWind code executionPlatforms Affected:ShopWind ShopWind 3.4.2 ShopWind ShopWind 3.4.1 ShopWind ShopWind 3.4.3Risk Level:5.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ShopWind could allow a remote attacker...

Delta Electronics CNCSoft-B DOPSoft code execution | CVE-2024-1595

February 23, 2024

NAME__________Delta Electronics CNCSoft-B DOPSoft code executionPlatforms Affected:Delta Electronics CNCSoft-B DOPSoft 1.0.0.4Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Delta Electronics CNCSoft-B DOPSoft could allow a...

Liferay Portal and DXP cross-site request forgery | CVE-2021-29050

February 22, 2024

NAME__________Liferay Portal and DXP cross-site request forgeryPlatforms Affected:Liferay DXP 7.3 Liferay Portal 7.3.5Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Liferay Portal and DXP are...

Trimble SketchUp code execution |

February 22, 2024

NAME__________Trimble SketchUp code executionPlatforms Affected:Trimble SketchUpRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Trimble SketchUp could allow a remote attacker to execute arbitrary code on...

Trimble SketchUp code execution |

February 22, 2024

Trimble SketchUp code execution |

February 22, 2024

Trimble SketchUp code execution |

February 22, 2024

REDAXO code execution | CVE-2024-25298

February 21, 2024

NAME__________REDAXO code executionPlatforms Affected:REDAXO REDAXO 5.15.1Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________REDAXO could allow a remote authenticated attacker to execute arbitrary code on...

Moodle cross-site request forgery | CVE-2024-25982

February 21, 2024

NAME__________Moodle cross-site request forgeryPlatforms Affected:Moodle Moodle 4.1 Moodle Moodle 4.2 Moodle Moodle 4.3 Moodle Moodle 4.1.8 Moodle Moodle 4.2.5 Moodle...

Moodle weak security | CVE-2024-25979

February 21, 2024

NAME__________Moodle weak securityPlatforms Affected:Moodle Moodle 4.1 Moodle Moodle 4.2 Moodle Moodle 4.3 Moodle Moodle 4.1.8 Moodle Moodle 4.2.5 Moodle Moodle...

Misskey file upload | CVE-2024-25636

February 21, 2024

NAME__________Misskey file uploadPlatforms Affected:Misskey Misskey 2023.12.2 Misskey Misskey 2024.1Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Misskey could allow a remote authenticated attacker to upload...

Moodle security bypass | CVE-2024-25983

February 21, 2024

NAME__________Moodle security bypassPlatforms Affected:Moodle Moodle 4.1 Moodle Moodle 4.2 Moodle Moodle 4.3 Moodle Moodle 4.1.8 Moodle Moodle 4.2.5 Moodle Moodle...

Multiple ELECOM wireless LAN routers command execution | CVE-2024-25579

February 21, 2024

NAME__________Multiple ELECOM wireless LAN routers command executionPlatforms Affected:ELECOM WRC-1167GS2-B 1.67 ELECOM WRC-1167GS2H-B 1.67 ELECOM WRC-2533GS2-B 1.62 ELECOM WRC-2533GS2-W 1.62 ELECOM...

Multiple ELECOM wireless LAN routers cross-site request forgery | CVE-2024-23910

February 21, 2024

NAME__________Multiple ELECOM wireless LAN routers cross-site request forgeryPlatforms Affected:ELECOM WRC-1167GS2-B 1.67 ELECOM WRC-1167GS2H-B 1.67 ELECOM WRC-2533GS2-B 1.62 ELECOM WRC-2533GS2-W 1.62...

Mozilla Firefox cache poisoning | CVE-2024-1554

February 21, 2024

NAME__________Mozilla Firefox cache poisoningPlatforms Affected:Mozilla Firefox 122Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mozilla Firefox is vulnerable to dns cache poisoning, caused by the...

Gain Access

libdicom code execution | CVE-2024-24793

Archer Technologies Archer Platform information disclosure | CVE-2024-26310

libdicom code execution | CVE-2024-24794

Kirby CMS HTML injection | CVE-2024-26482

flusity CMS cross-site request forgery | CVE-2024-26352

flusity CMS cross-site request forgery | CVE-2024-26351

flusity CMS cross-site request forgery | CVE-2024-26350

Kirby CMS file upload | CVE-2024-26483

flusity CMS cross-site request forgery | CVE-2024-26349

ShopWind code execution | CVE-2024-1705

Delta Electronics CNCSoft-B DOPSoft code execution | CVE-2024-1595

Liferay Portal and DXP cross-site request forgery | CVE-2021-29050

Trimble SketchUp code execution |

Trimble SketchUp code execution |

Trimble SketchUp code execution |

Trimble SketchUp code execution |

REDAXO code execution | CVE-2024-25298

Moodle cross-site request forgery | CVE-2024-25982

Moodle weak security | CVE-2024-25979

Misskey file upload | CVE-2024-25636

Moodle security bypass | CVE-2024-25983

Multiple ELECOM wireless LAN routers command execution | CVE-2024-25579

Multiple ELECOM wireless LAN routers cross-site request forgery | CVE-2024-23910

Mozilla Firefox cache poisoning | CVE-2024-1554

CVE Alert: CVE-2024-11620

CVE Alert: CVE-2024-52283

CVE Alert: CVE-2024-11402

CVE Alert: CVE-2024-52474

CVE Alert: CVE-2024-49503

You may have missed