1821
|
9.8 |
CRITICAL
Network
microsoft
|
windows_10_1507
|
Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released Ju…
|
NVD-CWE-noinfo
|
CVE-2024-43491
|
2024-09-26 10:00 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1822
|
- |
|
-
|
-
|
Default credentials on the Web Interface of Evolution Controller 2.x allows anyone to log in to the server directly to perform administrative functions. Upon installation or upon first login, the app…
|
-
|
CVE-2024-29844
|
2024-09-26 08:15 |
2024-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1823
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: It is a duplicate of CVE-2010-2799.
|
-
|
CVE-2010-10005
|
2024-09-26 08:15 |
2023-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1824
|
7.8 |
HIGH
Local
|
hypr
|
workforce_access
|
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HYPR Workforce Access on Windows allows Overflow Buffers.This issue affects Workforce Access: before 8.7.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-6334
|
2024-09-26 07:15 |
2024-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1825
|
5.5 |
MEDIUM
Local
|
hypr
|
workforce_access
|
Improper Input Validation vulnerability in HYPR Workforce Access on Windows allows Path Traversal.This issue affects Workforce Access: before 8.7.
|
CWE-20
Improper Input Validation
|
CVE-2023-5097
|
2024-09-26 07:15 |
2024-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1826
|
6.1 |
MEDIUM
Network
|
mediawiki
|
mediawiki
|
An issue was discovered in the GlobalBlocking extension in MediaWiki before 1.40.2. For a Special:GlobalBlock?uselang=x-xss URI, i18n-based XSS can occur via the parentheses message. This affects sub…
|
CWE-79
Cross-site Scripting
|
CVE-2024-23179
|
2024-09-26 06:35 |
2024-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1827
|
7.6 |
HIGH
Network
|
wpvibes
|
wp_mail_log
|
The WP Mail Log WordPress plugin before 1.1.3 does not correctly authorize its REST API endpoints, allowing users with the Contributor role to view and delete data that should only be accessible to A…
|
CWE-863
Incorrect Authorization
|
CVE-2023-5644
|
2024-09-26 06:35 |
2023-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1828
|
- |
|
-
|
-
|
PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component expression.ExplainExpressionList. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafte…
|
-
|
CVE-2024-41433
|
2024-09-26 06:15 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1829
|
- |
|
-
|
-
|
PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component (*Column).GetDecimal. This allows attackers to cause a Denial of Service (DoS) via a crafted input to the 'RemoveUnne…
|
-
|
CVE-2024-41434
|
2024-09-26 06:15 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1830
|
6.5 |
MEDIUM
Network
cheese_cafe_line_project
|
cheese_cafe_line
|
An information leak in Cheese Cafe Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2023-39040
|
2024-09-26 05:35 |
2023-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|