1751
|
7.8 |
HIGH
Local
|
hypr
|
workforce_access
|
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HYPR Workforce Access on Windows allows Overflow Buffers.This issue affects Workforce Access: before 8.7.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-6334
|
2024-09-26 07:15 |
2024-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1752
|
5.5 |
MEDIUM
Local
|
hypr
|
workforce_access
|
Improper Input Validation vulnerability in HYPR Workforce Access on Windows allows Path Traversal.This issue affects Workforce Access: before 8.7.
|
CWE-20
Improper Input Validation
|
CVE-2023-5097
|
2024-09-26 07:15 |
2024-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1753
|
6.1 |
MEDIUM
Network
|
mediawiki
|
mediawiki
|
An issue was discovered in the GlobalBlocking extension in MediaWiki before 1.40.2. For a Special:GlobalBlock?uselang=x-xss URI, i18n-based XSS can occur via the parentheses message. This affects sub…
|
CWE-79
Cross-site Scripting
|
CVE-2024-23179
|
2024-09-26 06:35 |
2024-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1754
|
7.6 |
HIGH
Network
|
wpvibes
|
wp_mail_log
|
The WP Mail Log WordPress plugin before 1.1.3 does not correctly authorize its REST API endpoints, allowing users with the Contributor role to view and delete data that should only be accessible to A…
|
CWE-863
Incorrect Authorization
|
CVE-2023-5644
|
2024-09-26 06:35 |
2023-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1755
|
- |
|
-
|
-
|
PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component expression.ExplainExpressionList. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafte…
|
-
|
CVE-2024-41433
|
2024-09-26 06:15 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1756
|
- |
|
-
|
-
|
PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component (*Column).GetDecimal. This allows attackers to cause a Denial of Service (DoS) via a crafted input to the 'RemoveUnne…
|
-
|
CVE-2024-41434
|
2024-09-26 06:15 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1757
|
6.5 |
MEDIUM
Network
cheese_cafe_line_project
|
cheese_cafe_line
|
An information leak in Cheese Cafe Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2023-39040
|
2024-09-26 05:35 |
2023-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1758
|
7.8 |
HIGH
Local
|
gnome
|
gnome-time_tracker
|
CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.
|
CWE-74
Injection
|
CVE-2023-36250
|
2024-09-26 05:35 |
2023-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1759
|
6.5 |
MEDIUM
Network
|
fortinet
|
fortianalyzer fortimanager fortianalyzer-bigdata
|
An authorization bypass through user-controlled key [CWE-639] vulnerability in FortiAnalyzer version 7.4.1 and before 7.2.5 and FortiManager version 7.4.1 and before 7.2.5 may allow a remote attacker…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2023-44254
|
2024-09-26 05:17 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1760
|
9.1 |
CRITICAL
Network
heimdalsecurity
|
thor
|
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service (DoS) via the Threat To Process Correla…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2023-29487
|
2024-09-26 05:15 |
2023-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|