401
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe: Fix opregion leak
Being part o the display, ideally the setup and cleanup would be done by
display itself. However this i…
|
NVD-CWE-noinfo
|
CVE-2024-44980
|
2024-10-11 02:42 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
402
|
7.8 |
HIGH
Local
|
imagemagick
|
imagemagick
|
ImageMagick is a free and open-source software suite, used for editing and manipulating digital images. The `AppImage` version `ImageMagick` might use an empty path when setting `MAGICK_CONFIGURE_PAT…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-41817
|
2024-10-11 02:25 |
2024-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
403
|
- |
|
-
|
-
|
A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as problematic. This affects an unknown part of the file blooddetails.php. The manipulation of the …
|
CWE-79
Cross-site Scripting
|
CVE-2024-9803
|
2024-10-11 02:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
404
|
- |
|
-
|
-
|
A vulnerability has been found in SourceCodester Profile Registration without Reload Refresh 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file …
|
CWE-79
Cross-site Scripting
|
CVE-2024-9799
|
2024-10-11 02:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
405
|
- |
|
-
|
-
|
A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file register.php. The manipulation of the argument user le…
|
CWE-89
SQL Injection
|
CVE-2024-9797
|
2024-10-11 02:15 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
406
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails
If the dpu_format_populate_layout() fails, then FB is prepared, but n…
|
CWE-459
Incomplete Cleanup
|
CVE-2024-44982
|
2024-10-11 02:09 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
407
|
6.1 |
MEDIUM
Network
|
ylefebvre
|
link_library
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library link-library allows Reflected XSS.This issue affects Link Li…
|
CWE-79
Cross-site Scripting
|
CVE-2024-35687
|
2024-10-11 01:59 |
2024-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
408
|
4.8 |
MEDIUM
Network
|
ylefebvre
|
link_library
|
The Link Library WordPress plugin before 7.4.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks e…
|
-
|
CVE-2022-4199
|
2024-10-11 01:59 |
2023-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
409
|
7.5 |
HIGH
Network
ylefebvre
|
link_library
|
The Link Library WordPress plugin before 7.2.8 does not have authorisation in place when deleting links, allowing unauthenticated users to delete arbitrary links via a crafted request
|
CWE-862
Missing Authorization
|
CVE-2021-25093
|
2024-10-11 01:59 |
2022-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
410
|
6.5 |
MEDIUM
Network
|
ylefebvre
|
link_library
|
The Link Library WordPress plugin before 7.2.8 does not have CSRF check when resetting library settings, allowing attackers to make a logged in admin reset arbitrary settings via a CSRF attack
|
CWE-352
Origin Validation Error
|
CVE-2021-25092
|
2024-10-11 01:59 |
2022-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|