1641
|
4.8 |
MEDIUM
Network
|
5starplugins
|
pretty_simple_popup_builder
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in 5 Star Plugins Pretty Simple Popup Builder allows Stored XSS.This issue affects Pretty Sim…
|
CWE-79
Cross-site Scripting
|
CVE-2024-39626
|
2024-09-18 00:07 |
2024-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1642
|
7.8 |
HIGH
Local
|
siemens
|
omnivise_t3000_whitelisting_server omnivise_t3000_thin_client omnivise_t3000_terminal_server omnivise_t3000_product_data_management omnivise_t3000_domain_controller omnivise_t3000_appl…
|
A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 Domain Controller R9.2 (All versions), Omnivise T3000 Product Data Management (PDM) R9.2 (…
|
NVD-CWE-noinfo
|
CVE-2024-38876
|
2024-09-17 23:45 |
2024-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1643
|
7.8 |
HIGH
Local
|
ni
|
veristand
|
A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that may result in remote code execution. Successful exploitation requires an attacker to get a user to op…
|
CWE-22
Path Traversal
|
CVE-2024-6791
|
2024-09-17 23:44 |
2024-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1644
|
9.8 |
CRITICAL
Network
totolink
|
t8_firmware
|
TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulnerability in the setWizardCfg function via the ssid5g parameter.
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-46419
|
2024-09-17 23:35 |
2024-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1645
|
9.8 |
CRITICAL
Network
totolink
|
t8_firmware
|
TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulnerability in the setWiFiAclRules function via the desc parameter.
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-46451
|
2024-09-17 23:35 |
2024-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1646
|
7.5 |
HIGH
Network
totolink
|
t8_firmware
|
TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulnerability in the UploadCustomModule function, which allows attackers to cause a Denial of Service (DoS) via the File parameter.
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-46424
|
2024-09-17 23:35 |
2024-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1647
|
8.8 |
HIGH
Network
|
sangoma
|
freepbx
|
Sangoma Technologies FreePBX before cdr 15.0.18, 16.0.40, 15.0.16, and 16.0.17 was discovered to contain an access control issue via a modified parameter value, e.g., changing extension=self to exten…
|
NVD-CWE-Other
|
CVE-2023-43336
|
2024-09-17 23:35 |
2023-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1648
|
9.8 |
CRITICAL
Network
hpe
|
oneview
|
A remote code execution issue exists in HPE OneView.
|
NVD-CWE-noinfo
|
CVE-2023-30912
|
2024-09-17 23:35 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1649
|
7.5 |
HIGH
Network
|
oracle
|
database_server
|
Vulnerability in the Oracle Data Provider for .NET component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Difficult to exploit vulnerability allows unauthenticat…
|
NVD-CWE-noinfo
|
CVE-2023-21893
|
2024-09-17 23:35 |
2023-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1650
|
9.8 |
CRITICAL
Network
oracle
|
communications_converged_application_server
|
Vulnerability in the Oracle Communications Converged Application Server product of Oracle Communications (component: Core). Supported versions that are affected are 7.1.0 and 8.0.0. Easily exploita…
|
NVD-CWE-noinfo
|
CVE-2023-21890
|
2024-09-17 23:35 |
2023-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|