81
|
- |
|
-
|
-
|
A condition exists in FlashArray Purity whereby a malicious user could use a remote administrative service to create an account on the array allowing privileged access.
New
|
-
|
CVE-2024-0003
|
2024-09-24 03:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
82
|
- |
|
-
|
-
|
A condition exists in FlashArray Purity whereby an attacker can employ a privileged account allowing remote access to the array.
New
|
-
|
CVE-2024-0002
|
2024-09-24 03:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
83
|
- |
|
-
|
-
|
A condition exists in FlashArray Purity whereby a local account intended for initial array configuration remains active potentially allowing a malicious actor to gain elevated privileges.
New
|
-
|
CVE-2024-0001
|
2024-09-24 03:15 |
2024-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
84
|
6.1 |
MEDIUM
Network
|
oretnom23
|
resort_reservation_system
|
A vulnerability classified as problematic was found in SourceCodester Resort Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file manage_fee.php. The manipul…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-8951
|
2024-09-24 03:12 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
85
|
7.5 |
HIGH
Network
micropython
|
micropython
|
A vulnerability was found in MicroPython 1.23.0. It has been rated as critical. Affected by this issue is the function mpz_as_bytes of the file py/objint.c. The manipulation leads to heap-based buffe…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-8948
|
2024-09-24 03:10 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
86
|
8.8 |
HIGH
Network
|
oretnom23
|
online_eyewear_shop
|
A vulnerability classified as critical has been found in SourceCodester Online Eyewear Shop 1.0. This affects an unknown part of the file /classes/Master.php of the component Cart Content Handler. Th…
Update
|
CWE-282
Improper Ownership Management
|
CVE-2024-8949
|
2024-09-24 03:05 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
87
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in Autofill in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
Update
|
NVD-CWE-noinfo
|
CVE-2024-8908
|
2024-09-24 02:59 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
88
|
6.1 |
MEDIUM
Network
|
netcat
|
netcat_content_management_system
|
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific paths on the site.
This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-8653
|
2024-09-24 02:55 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
89
|
6.1 |
MEDIUM
Network
|
netcat
|
netcat_content_management_system
|
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific path on the site.
This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly …
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-8652
|
2024-09-24 02:53 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
90
|
5.3 |
MEDIUM
Network
netcat
|
netcat_content_management_system
|
A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that can be used to check whether a user exists in the system, which could be a basis for further attacks.
Th…
Update
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-8651
|
2024-09-24 02:51 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|