21
|
- |
|
-
|
-
|
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific path on the site.
This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly …
New
|
-
|
CVE-2024-8652
|
2024-09-20 02:15 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
22
|
- |
|
-
|
-
|
A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that can be used to check whether a user exists in the system, which could be a basis for further attacks.
Th…
New
|
-
|
CVE-2024-8651
|
2024-09-20 02:15 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
23
|
7.8 |
HIGH
Local
|
-
|
-
|
Microsoft Office Visio Remote Code Execution Vulnerability
New
|
CWE-284
Improper Access Control
|
CVE-2024-38016
|
2024-09-20 02:15 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
24
|
- |
|
-
|
-
|
libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cpp Load function via an XPM file.
New
|
-
|
CVE-2024-31570
|
2024-09-20 02:15 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
25
|
6.7 |
MEDIUM
Local
|
ibm
|
db2
|
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 with a Federated configuration is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user…
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2023-35012
|
2024-09-20 02:15 |
2023-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
26
|
9.8 |
CRITICAL
Network
abb
|
aspect-ent-2_firmware aspect-ent-12_firmware aspect-ent-256_firmware aspect-ent-96_firmware nexus-2128_firmware nexus-2128-a_firmware nexus-2128-g_firmware nexus-2128-f_firmware<…
|
Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series…
Update
|
CWE-77
Command Injection
|
CVE-2023-0636
|
2024-09-20 02:15 |
2023-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
27
|
9.8 |
CRITICAL
Network
lahirudanushka
|
school_management_system
|
A vulnerability, which was classified as critical, has been found in lahirudanushka School Management System 1.0.0/1.0.1. Affected by this issue is some unknown functionality of the file login.php of…
Update
|
CWE-89
SQL Injection
|
CVE-2024-6268
|
2024-09-20 02:06 |
2024-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
28
|
4.8 |
MEDIUM
Network
|
octobercms
|
october
|
October is a self-hosted CMS platform based on the Laravel PHP Framework. This issue affects authenticated administrators who may be redirected to an untrusted URL using the PageFinder schema. The r…
Update
|
CWE-601
Open Redirect
|
CVE-2024-24764
|
2024-09-20 01:57 |
2024-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
29
|
9.8 |
CRITICAL
Network
pearadmin
|
pear_admin_boot
|
A vulnerability classified as critical has been found in Pear Admin Boot up to 2.0.2. Affected is an unknown function of the file /system/dictData/loadDictItem. The manipulation leads to sql injectio…
Update
|
CWE-89
SQL Injection
|
CVE-2024-6266
|
2024-09-20 01:53 |
2024-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
30
|
6.1 |
MEDIUM
Network
|
skycaiji
|
skycaiji
|
A vulnerability has been found in Zorlan SkyCaiji up to 2.8 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Task Handler. The manipulation o…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-6252
|
2024-09-20 01:51 |
2024-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|