491
|
- |
|
-
|
-
|
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206 up to 20241022. It has been rated as problematic. This issue affects the function websReadEvent of the…
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-10280
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
492
|
6.1 |
MEDIUM
Network
|
-
|
-
|
The Nioland theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘s’ parameter in all versions up to, and including, 1.2.6 due to insufficient input sanitization and output esc…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-10250
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
493
|
4.7 |
MEDIUM
Local
|
-
|
-
|
A vulnerability was found in PAM. The secret information is stored in memory, where the attacker can trigger the victim program to execute by sending characters to its standard input (stdin). As this…
New
|
-
|
CVE-2024-10041
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
494
|
- |
|
-
|
-
|
A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects unknown code of the file /com/esafenet/servlet/policy/PrintPolicyService.java. The manipulati…
New
|
CWE-89
SQL Injection
|
CVE-2024-10279
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
495
|
- |
|
-
|
-
|
A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects an unknown part of the file /com/esafenet/servlet/user/ReUserOrganiseService.java. The manipulation of th…
New
|
CWE-89
SQL Injection
|
CVE-2024-10278
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
496
|
- |
|
-
|
-
|
A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/ajax/UsbKeyAjax.java. The manipulation o…
New
|
CWE-89
SQL Injection
|
CVE-2024-10277
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
497
|
5.4 |
MEDIUM
Network
|
-
|
-
|
The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the several parameters in all versions up to, and including, 7.2.2 due to insuffic…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-8500
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
498
|
- |
|
-
|
-
|
A vulnerability has been found in Tektronix Sentry 6.0.9 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /?page=reports of the component Reports …
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-10276
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
499
|
4.9 |
MEDIUM
Network
|
-
|
-
|
IBM CICS Transaction Gateway for Multiplatforms 9.2 and 9.3 transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retr…
New
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2023-50310
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
500
|
- |
|
-
|
-
|
Incorrect Default Permissions vulnerability in GenBroker32, which is included in the installers for ICONICS GENESIS64 version 10.97.3 and prior, Mitsubishi Electric GENESIS64 version 10.97.3 and prio…
New
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-7587
|
2024-10-24 00:12 |
2024-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|