661
|
- |
|
-
|
-
|
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and earlier.
|
-
|
CVE-2023-6640
|
2024-09-28 01:15 |
2024-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
662
|
- |
|
-
|
-
|
Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the controller to assume the end device has left the network. After this, frames sent by the end device wil…
|
-
|
CVE-2023-6533
|
2024-09-28 01:15 |
2024-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
663
|
6.8 |
MEDIUM
Physics
|
silabs
|
gecko_software_development_kit
|
Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.
|
CWE-909
Missing Initialization of Resource
|
CVE-2023-5138
|
2024-09-28 01:15 |
2024-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
664
|
6.5 |
MEDIUM
Adjacent
|
silabs
|
z-wave_software_development_kit
|
A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint devices running Z-Wave SDK v7.20.3 (Gecko SDK v4.3.3) and earlier. This attack can be carried out only by d…
|
NVD-CWE-noinfo
|
CVE-2023-5310
|
2024-09-28 01:15 |
2023-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
665
|
8.8 |
HIGH
Network
|
dedecms
|
dedecms
|
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue affects some unknown processing of the file article_string_mix.php. The manipulation leads to os command …
|
CWE-78
OS Command
|
CVE-2024-9076
|
2024-09-28 01:14 |
2024-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
666
|
7.3 |
HIGH
Network
webliberty
|
simple_spoiler
|
The The Simple Spoiler plugin for WordPress is vulnerable to arbitrary shortcode execution in versions 1.2 to 1.3. This is due to the plugin adding the filter add_filter('comment_text', 'do_shortcode…
|
CWE-94
Code Injection
|
CVE-2024-8479
|
2024-09-28 01:12 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
667
|
9.8 |
CRITICAL
Network
codezips
|
online_shopping_portal
|
A vulnerability classified as problematic was found in Codezips Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file insert-product.php. The manipulation…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-9038
|
2024-09-28 01:11 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
668
|
7.2 |
HIGH
Network
|
softaculous
|
backuply
|
The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to SQL Injection via the 'options' parameter passed to the backuply_wp_clone_sql() function in all versions up to,…
|
CWE-89
SQL Injection
|
CVE-2024-8669
|
2024-09-28 01:08 |
2024-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
669
|
9.8 |
CRITICAL
Network
mayurik
|
best_house_rental_management_system
|
A vulnerability, which was classified as critical, has been found in SourceCodester Best House Rental Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php…
|
CWE-89
SQL Injection
|
CVE-2024-9039
|
2024-09-28 00:58 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
670
|
8.8 |
HIGH
Network
|
mayurik
|
best_house_rental_management_system
|
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=update_accoun…
|
CWE-89
SQL Injection
|
CVE-2024-9041
|
2024-09-28 00:57 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|