1471
|
8.8 |
HIGH
Network
|
thimpress
|
learnpress
|
Cross-Site Request Forgery (CSRF) vulnerability in ThimPress LearnPress.This issue affects LearnPress: from n/a through 4.2.6.8.2.
|
CWE-352
Origin Validation Error
|
CVE-2024-39641
|
2024-09-19 01:57 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1472
|
8.8 |
HIGH
Network
|
themeum
|
tutor_lms
|
Cross-Site Request Forgery (CSRF) vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.2.
|
CWE-352
Origin Validation Error
|
CVE-2024-39645
|
2024-09-19 01:46 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1473
|
9.8 |
CRITICAL
Network
huawei
|
harmonyos emui
|
API permission management vulnerability in the Fwk-Display module.Successful exploitation of this vulnerability may cause features to perform abnormally.
|
NVD-CWE-noinfo
|
CVE-2023-44106
|
2024-09-19 01:35 |
2023-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1474
|
7.5 |
HIGH
Network
huawei
|
harmonyos emui
|
Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2023-44093
|
2024-09-19 01:35 |
2023-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1475
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
isdn: cpai: check ctr->cnr to avoid array index out of bound
The cmtp_add_connection() would add a cmtp session to a controller
a…
|
CWE-129
Improper Validation of Array Index
|
CVE-2021-4439
|
2024-09-19 01:34 |
2024-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1476
|
8.8 |
HIGH
Network
|
sender
|
sender
|
Cross-Site Request Forgery (CSRF) vulnerability in Sender Sender – Newsletter, SMS and Email Marketing Automation for WooCommerce.This issue affects Sender – Newsletter, SMS and Email Marketing Autom…
|
CWE-352
Origin Validation Error
|
CVE-2024-39657
|
2024-09-19 01:25 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1477
|
8.8 |
HIGH
Network
|
10up
|
simple_local_avatars
|
Cross-Site Request Forgery (CSRF) vulnerability in 10up Simple Local Avatars.This issue affects Simple Local Avatars: from n/a through 2.7.10.
|
CWE-352
Origin Validation Error
|
CVE-2024-43116
|
2024-09-19 01:22 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1478
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping()
After commit e3beca48a45b ("irqdomain/treewide: Keep firmwar…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2022-48724
|
2024-09-19 01:19 |
2024-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1479
|
8.8 |
HIGH
Network
|
wpmudev
|
hummingbird
|
Cross-Site Request Forgery (CSRF) vulnerability in WPMU DEV Hummingbird.This issue affects Hummingbird: from n/a through 3.9.1.
|
CWE-352
Origin Validation Error
|
CVE-2024-43117
|
2024-09-19 01:15 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1480
|
8.8 |
HIGH
Network
|
loftware
|
spectrum
|
Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks.
|
CWE-611
XXE
|
CVE-2023-37233
|
2024-09-19 01:10 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|