2171
|
7.5 |
HIGH
Network
microsoft
|
sharepoint_server
|
Microsoft SharePoint Server Denial of Service Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43466
|
2024-09-13 23:44 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2172
|
7.3 |
HIGH
Network
|
microsoft
|
windows_server_2008
|
Microsoft Windows Admin Center Information Disclosure Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43475
|
2024-09-13 23:42 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2173
|
5.4 |
MEDIUM
Network
|
crocoblock
|
jetelements
|
The JetElements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' and 'slide_id' parameters in all versions up to, and including, 2.6.20 due to insufficient input sanitiz…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7144
|
2024-09-13 23:40 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2174
|
5.4 |
MEDIUM
Network
|
microsoft
|
dynamics_365
|
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
|
CWE-79
Cross-site Scripting
|
CVE-2024-43476
|
2024-09-13 23:39 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2175
|
8.8 |
HIGH
Network
|
crocoblock
|
jetelements
|
The JetElements plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.6.20 via the 'progress_type' parameter. This makes it possible for authenticated att…
|
CWE-22
Path Traversal
|
CVE-2024-7145
|
2024-09-13 23:39 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2176
|
8.5 |
HIGH
Network
|
microsoft
|
power_automate
|
Microsoft Power Automate Desktop Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43479
|
2024-09-13 23:38 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2177
|
4.3 |
MEDIUM
Network
|
bricksbuilder
|
bricks
|
The Bricks theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.8.1. This is due to missing or incorrect nonce validation on the 'save_settings' functio…
|
CWE-352
Origin Validation Error
|
CVE-2023-3408
|
2024-09-13 23:37 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2178
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in Autofill in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: H…
|
CWE-416
Use After Free
|
CVE-2024-8639
|
2024-09-13 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2179
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-843
Type Confusion
|
CVE-2024-8638
|
2024-09-13 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2180
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in Media Router in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severit…
|
CWE-416
Use After Free
|
CVE-2024-8637
|
2024-09-13 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|