561
|
- |
|
-
|
-
|
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18 and iPadOS 18. An attacker may be able to use Siri to enable Auto-Answer Calls.
New
|
-
|
CVE-2024-40853
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
562
|
- |
|
-
|
-
|
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to read sensitive location information.
New
|
-
|
CVE-2024-27849
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
563
|
- |
|
-
|
-
|
: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Qode Interactive Qode Essential Addons.This issue affects Qode Essential Add…
New
|
CWE-98
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
|
CVE-2024-50457
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
564
|
- |
|
-
|
-
|
Relative Path Traversal vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion.This issue affects The Pack Elementor addons: from n/a through 2.0.9.
New
|
CWE-23
Relative Path Traversal
|
CVE-2024-50453
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
565
|
- |
|
-
|
-
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Theme Horse Clean Retina.This issue affects Clean Retina: from n/a through 3.0…
New
|
CWE-98
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
|
CVE-2024-50436
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
566
|
- |
|
-
|
-
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Theme Horse Meta News.This issue affects Meta News: from n/a through 1.1.7.
New
|
CWE-98
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
|
CVE-2024-50435
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
567
|
- |
|
-
|
-
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Theme Horse NewsCard.This issue affects NewsCard: from n/a through 1.3.
New
|
CWE-98
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
|
CVE-2024-50434
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
568
|
- |
|
-
|
-
|
Duende IdentityServer is an OpenID Connect and OAuth 2.x framework for ASP.NET Core. IdentityServer's local API authentication handler performs insufficient validation of the cnf claim in DPoP access…
New
|
CWE-287
Improper Authentication
|
CVE-2024-49755
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
569
|
- |
|
-
|
-
|
Tenda AC7 v.15.03.06.44 ate_iwpriv_set has pre-authentication command injection allowing remote attackers to execute arbitrary code.
New
|
-
|
CVE-2024-48826
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
570
|
- |
|
-
|
-
|
Tenda AC7 v.15.03.06.44 ate_ifconfig_set has pre-authentication command injection allowing remote attackers to execute arbitrary code.
New
|
-
|
CVE-2024-48825
|
2024-10-29 23:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|