|
1201
|
- |
|
-
|
-
|
fastd is a VPN daemon which tunnels IP packets and Ethernet frames over UDP. When receiving a data packet from an unknown IP address/port combination, fastd will assume that one of its connected peer…
|
CWE-405
Asymmetric Resource Consumption (Amplification)
|
CVE-2025-24356
|
2025-01-28 03:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1202
|
- |
|
-
|
-
|
imgproxy is server for resizing, processing, and converting images. Imgproxy does not block the 0.0.0.0 address, even with IMGPROXY_ALLOW_LOOPBACK_SOURCE_ADDRESSES set to false. This can expose servi…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2025-24354
|
2025-01-28 03:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1203
|
- |
|
-
|
-
|
matrix-hookshot is a Matrix bot for connecting to external services like GitHub, GitLab, JIRA, and more. When Hookshot 6 version 6.0.1 or below, or Hookshot 5 version 5.4.1 or below, is configured wi…
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2025-23197
|
2025-01-28 03:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1204
|
4.5 |
MEDIUM
Local
|
-
|
-
|
A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This affects an unknown part in the library profapi.dll. The manipulation leads to untrusted search …
|
CWE-426
Untrusted Search Path
|
CVE-2025-0733
|
2025-01-28 03:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1205
|
4.5 |
MEDIUM
Local
|
-
|
-
|
A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll. The manipul…
|
CWE-426
Untrusted Search Path
|
CVE-2025-0732
|
2025-01-28 03:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1206
|
- |
|
-
|
-
|
Vision related software from NI used a third-party library for image processing that exposes several vulnerabilities. These vulnerabilities may result in arbitrary code execution. Successful exploi…
|
-
|
CVE-2024-12740
|
2025-01-28 03:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1207
|
- |
|
-
|
-
|
Cacti is an open source performance and fault management framework. Due to a flaw in multi-line SNMP result parser, authenticated users can inject malformed OIDs in the response. When processed by ss…
|
CWE-78
OS Command
|
CVE-2025-22604
|
2025-01-28 02:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1208
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel. 40304. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to clickjacking. T…
|
CWE-451
User Interface (UI) Misrepresentation of Critical Information
|
CVE-2025-0729
|
2025-01-28 02:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1209
|
- |
|
-
|
-
|
A cross-site scripting (XSS) vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title…
|
-
|
CVE-2024-55227
|
2025-01-28 02:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1210
|
- |
|
-
|
-
|
Cacti is an open source performance and fault management framework. Cacti has a SQL injection vulnerability in the template function of host_templates.php using the graph_template parameter. This vul…
|
CWE-89
SQL Injection
|
CVE-2024-54146
|
2025-01-28 02:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
