421
|
- |
|
-
|
-
|
A vulnerability was found in Tenda AC8 16.03.34.06. It has been declared as critical. Affected by this vulnerability is the function compare_parentcontrol_time of the file /goform/saveParentControlIn…
Update
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2024-10123
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
422
|
- |
|
-
|
-
|
In J2eeFAST <=2.7, the backend function has unsafe filtering, which allows an attacker to trigger certain sensitive functions resulting in arbitrary code execution.
Update
|
-
|
CVE-2024-45944
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
423
|
- |
|
-
|
-
|
ACON is a widely-used library of tools for machine learning that focuses on adaptive correlation optimization. A potential vulnerability has been identified in the input validation process, which cou…
Update
|
CWE-20
Improper Input Validation
|
CVE-2024-49361
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
424
|
- |
|
-
|
-
|
A vulnerability was found in Topdata Inner Rep Plus WebServer 2.01. It has been classified as problematic. Affected is an unknown function of the file /InnerRepPlus.html of the component Operator Det…
Update
|
CWE-549
Missing Password Field Masking
|
CVE-2024-10122
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
425
|
- |
|
-
|
-
|
A vulnerability was found in wfh45678 Radar up to 1.0.8 and classified as critical. This issue affects some unknown processing of the component Interface Handler. The manipulation with the input /../…
Update
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-10121
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
426
|
8.3 |
HIGH
Network
-
|
-
|
The Time Clock plugin and Time Clock Pro plugin for WordPress are vulnerable to Remote Code Execution in versions up to, and including, 1.2.2 (for Time Clock) and 1.1.4 (for Time Clock Pro) via the '…
Update
|
CWE-94
Code Injection
|
CVE-2024-9593
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
427
|
- |
|
-
|
-
|
Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. A low privileged attacker with remote access could p…
Update
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-48016
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
428
|
- |
|
-
|
-
|
Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains an Improper Certificate Validation vulnerability. A low privileged attacker with remote access could potentially explo…
Update
|
CWE-295
Improper Certificate Validation
|
CVE-2024-47241
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
429
|
- |
|
-
|
-
|
A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argume…
Update
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-10120
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
430
|
- |
|
-
|
-
|
Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows contains a local privilege escalation vulnerability which allows attackers SYSTEM level access.
Update
|
-
|
CVE-2023-6080
|
2024-10-22 02:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|