211
|
- |
|
-
|
-
|
Local File Inclusion vulnerability in pretix Widget WordPress plugin pretix-widget on Windows allows PHP Local File Inclusion. This issue affects pretix Widget WordPress plugin: from 1.0.0 through 1.…
New
|
-
|
CVE-2024-9575
|
2024-10-9 23:35 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
212
|
9.8 |
CRITICAL
Network
arjunsharda
|
searchor
|
main.py in Searchor before 2.4.2 uses eval on CLI input, which may cause unexpected code execution.
Update
|
CWE-74
Injection
|
CVE-2023-43364
|
2024-10-9 23:35 |
2023-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
213
|
5.3 |
MEDIUM
Network
opcfoundation
|
ua-.netstandard
|
The OPC UA .NET Standard Reference Server before 1.4.371.86. places sensitive information into an error message that may be seen remotely.
Update
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2023-31048
|
2024-10-9 23:35 |
2023-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
214
|
5.3 |
MEDIUM
Local
|
espeak-ng
|
espeak-ng
|
Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c.
Update
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-49990
|
2024-10-9 23:35 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
215
|
8.8 |
HIGH
Network
|
archerirm
|
archer
|
Archer Platform 6.x before 6.14 P1 HF2 (6.14.0.1.2) contains an insecure direct object reference vulnerability. An authenticated malicious user in a multi-instance installation could potentially expl…
Update
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2023-48641
|
2024-10-9 23:35 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
216
|
7.8 |
HIGH
Local
|
apple
|
macos
|
Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Sonoma 14.2. Processing a maliciously crafted file may lead to unexpected app termination…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2023-42903
|
2024-10-9 23:35 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
217
|
7.8 |
HIGH
Local
|
apple
|
iphone_os macos ipados
|
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing maliciously crafted input may l…
Update
|
NVD-CWE-noinfo
|
CVE-2023-40446
|
2024-10-9 23:35 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
218
|
8.8 |
HIGH
Network
|
struktur
|
libheif
|
libheif v1.17.5 was discovered to contain a segmentation violation via the function UncompressedImageCodec::decode_uncompressed_image.
Update
|
NVD-CWE-noinfo
|
CVE-2023-49460
|
2024-10-9 23:35 |
2023-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
219
|
9.8 |
CRITICAL
Network
netscout
|
ngeniuspulse
|
NETSCOUT nGeniusPULSE 3.8 has a Hardcoded Cryptographic Key.
Update
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2023-40300
|
2024-10-9 23:35 |
2023-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
220
|
7.5 |
HIGH
Network
apache
|
traffic_server
|
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0.
8.x u…
Update
|
CWE-200
Information Exposure
|
CVE-2023-33933
|
2024-10-9 23:35 |
2023-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|