1981
|
6.5 |
MEDIUM
Network
|
ilias
|
ilias
|
ILIAS (2013-09-12 release) contains a medium-criticality Directory Traversal local file inclusion vulnerability in the ScormAicc module. An attacker with a privileged account, typically holding the t…
|
NVD-CWE-Other
|
CVE-2023-45867
|
2024-09-13 00:35 |
2023-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1982
|
7.5 |
HIGH
Network
linecorp
|
line
|
An issue in Anglaise Company Anglaise.Company v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.
|
NVD-CWE-noinfo
|
CVE-2023-38845
|
2024-09-13 00:35 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1983
|
7.8 |
HIGH
Local
|
hp
|
print_and_scan_doctor
|
HP Print and Scan Doctor for Windows may potentially be vulnerable to escalation of privilege. HP is releasing software updates to mitigate the potential vulnerability.
|
NVD-CWE-noinfo
|
CVE-2023-5671
|
2024-09-13 00:35 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1984
|
9.8 |
CRITICAL
Network
dromara
|
sa-token
|
An issue in Dromara SaToken version 1.36.0 and before allows a remote attacker to escalate privileges via a crafted payload to the URL.
|
NVD-CWE-noinfo
|
CVE-2023-44794
|
2024-09-13 00:35 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1985
|
7.8 |
HIGH
Local
|
edneville
|
please
|
please (aka pleaser) through 0.5.4 allows privilege escalation through the TIOCSTI and/or TIOCLINUX ioctl. (If both TIOCSTI and TIOCLINUX are disabled, this cannot be exploited.)
|
NVD-CWE-noinfo
|
CVE-2023-46277
|
2024-09-13 00:35 |
2023-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1986
|
6.5 |
MEDIUM
Network
facebook
|
react-devtools
|
The React Developer Tools extension registers a message listener with window.addEventListener('message', <listener>) in a content script that is accessible to any webpage that is active in the browse…
|
NVD-CWE-noinfo
|
CVE-2023-5654
|
2024-09-13 00:35 |
2023-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1987
|
- |
|
data_general sgi sun hp debian ibm bsdi
|
dg_ux irix sunos hp-ux debian_linux solaris aix bsd_os
|
Buffer overflow in xlock program allows local users to execute commands as root.
|
NVD-CWE-Other
|
CVE-1999-0038
|
2024-09-13 00:35 |
1997-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1988
|
6.5 |
MEDIUM
Network
hyperview
|
geoportal_toolkit
|
HyperView Geoportal Toolkit in versions lower than 8.5.0 does not restrict cross-domain requests when fetching remote content pointed by one of GET request parameters.
An unauthenticated remote attac…
|
NVD-CWE-Other
|
CVE-2024-6449
|
2024-09-13 00:32 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1989
|
6.3 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
filelock: Remove locks reliably when fcntl/close race is detected
When fcntl_setlk() races with close(), it removes the created l…
|
CWE-416
Use After Free
|
CVE-2024-41012
|
2024-09-13 00:28 |
2024-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1990
|
- |
|
-
|
-
|
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects:
?Product
Affected Versions
LoadMaster
From 7.…
|
CWE-20
Improper Input Validation
|
CVE-2024-6658
|
2024-09-13 00:18 |
2024-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|