1871
|
5.4 |
MEDIUM
Network
|
jeanmarc77
|
123solar
|
A vulnerability classified as problematic has been found in jeanmarc77 123solar 1.8.4.5. This affects an unknown part of the file /detailed.php. The manipulation of the argument date1 leads to cross …
|
CWE-79
Cross-site Scripting
|
CVE-2024-9007
|
2024-09-26 03:40 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1872
|
5.3 |
MEDIUM
Network
overleaf
|
overleaf
|
Overleaf is a web-based collaborative LaTeX editor. Overleaf Community Edition and Server Pro prior to version 5.0.7 (or 4.2.7 for the 4.x series) contain a vulnerability that allows an arbitrary lan…
|
CWE-74
Injection
|
CVE-2024-45312
|
2024-09-26 03:37 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1873
|
6.0 |
MEDIUM
Network
|
fortinet
|
forticlient_endpoint_management_server
|
A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiClientEMS versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.13, 6.4.0 through 6.4.9, 6.2.0 through 6.2.…
|
CWE-22
Path Traversal
|
CVE-2024-21753
|
2024-09-26 03:36 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1874
|
6.5 |
MEDIUM
Network
tonton-tei_waiting_project
|
tonton-tei_waiting
|
An information leak in TonTon-Tei_waiting Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2023-39046
|
2024-09-26 03:35 |
2023-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1875
|
7.5 |
HIGH
Network
tdsql_chitu_project
|
tdsql_chitu
|
An issue in TDSQL Chitu management platform v.10.3.19.5.0 allows a remote attacker to obtain sensitive information via get_db_info function in install.php.
|
NVD-CWE-noinfo
|
CVE-2023-42387
|
2024-09-26 03:35 |
2023-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1876
|
7.5 |
HIGH
Network
apache
|
tomcat_connectors
|
Important: Authentication Bypass CVE-2023-41081
The mod_jk component of Apache Tomcat Connectors in some circumstances, such as when a configuration included "JkOptions +ForwardDirectories" but the …
|
NVD-CWE-noinfo
|
CVE-2023-41081
|
2024-09-26 03:35 |
2023-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1877
|
5.4 |
MEDIUM
Network
|
overleaf
|
overleaf
|
Overleaf is a web-based collaborative LaTeX editor. When installing Server Pro using the Overleaf Toolkit from before 2024-07-17 or legacy docker-compose.yml from before 2024-08-28, the configuration…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2024-45313
|
2024-09-26 03:12 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1878
|
6.5 |
MEDIUM
Network
|
opendaylight
|
model-driven_service_abstraction_layer
|
In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment.
|
NVD-CWE-noinfo
|
CVE-2024-46942
|
2024-09-26 03:08 |
2024-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1879
|
5.4 |
MEDIUM
Network
|
workdo
|
crmgo_saas
|
A vulnerability classified as problematic was found in CodeCanyon CRMGo SaaS 7.2. This vulnerability affects unknown code of the file /deal/{note_id}/note. The manipulation of the argument notes lead…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9030
|
2024-09-26 03:01 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1880
|
9.8 |
CRITICAL
Network
cellopoint
|
secure_email_gateway
|
Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing aut…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-9043
|
2024-09-26 02:54 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|