1861
|
9.8 |
CRITICAL
Network
mozilla
|
firefox
|
If an out-of-memory condition occurs at a specific point using allocations in the probabilistic heap checker, an assertion could have been triggered, and in rarer situations, memory corruption could …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-5695
|
2024-09-14 03:31 |
2024-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1862
|
6.1 |
MEDIUM
Network
|
phpvibe
|
phpvibe
|
A vulnerability, which was classified as problematic, has been found in PHPVibe 11.0.46. This issue affects some unknown processing of the file functionalities.global.php of the component Global Opti…
|
CWE-79
Cross-site Scripting
|
CVE-2024-6082
|
2024-09-14 03:29 |
2024-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1863
|
7.4 |
HIGH
Network
|
osnexus
|
quantastor
|
An attacker is able to launch a Reflected XSS attack using a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2021-42080
|
2024-09-14 03:15 |
2023-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1864
|
8.1 |
HIGH
Network
|
sonaar
|
mp3_audio_player_for_music\ _radio_\&_podcast
|
The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to unauthorized arbitrary file deletion due to a missing capability check on the removeTempFil…
|
CWE-862
Missing Authorization
|
CVE-2024-7856
|
2024-09-14 03:14 |
2024-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1865
|
6.1 |
MEDIUM
Network
|
smartertools
|
smartertrack
|
Stored XSS in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.
|
CWE-79
Cross-site Scripting
|
CVE-2022-24386
|
2024-09-14 03:12 |
2022-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1866
|
9.8 |
CRITICAL
Network
microfocus
|
netiq_advanced_authentication
|
Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2
|
NVD-CWE-Other
|
CVE-2023-24468
|
2024-09-14 03:08 |
2023-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1867
|
6.5 |
MEDIUM
Network
|
hybridsoftware
|
cloudflow
|
Local File Inclusion vulnerability within Cloudflow allows attackers to retrieve confidential information from the system.
|
CWE-22
Path Traversal
|
CVE-2022-41216
|
2024-09-14 03:08 |
2023-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1868
|
6.5 |
MEDIUM
Network
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in storing and reusing information in Advance Authentication. This issue can lead to leakage of sensitive data to unauthorized user. The issue affects NetIQ Advance Authent…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-22509
|
2024-09-14 03:05 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1869
|
8.8 |
HIGH
Adjacent
|
microfocus
|
netiq_advanced_authentication
|
Insufficient or weak TLS protocol version identified in Advance authentication client server communication when specific service is accessed between devices. This issue affects NetIQ Advance Authent…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2021-38121
|
2024-09-14 03:04 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1870
|
7.2 |
HIGH
Network
|
microfocus
|
netiq_advanced_authentication
|
A vulnerability identified in Advance Authentication that allows bash command Injection in administrative controlled functionality of backup due to improper
handling in provided command parameters. T…
|
CWE-77
Command Injection
|
CVE-2021-38120
|
2024-09-14 03:04 |
2024-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|