731
|
8.8 |
HIGH
Network
|
whiletrue
|
most_and_least_read_posts_widget
|
Cross-Site Request Forgery (CSRF) vulnerability in WhileTrue Most And Least Read Posts Widget allows Cross Site Request Forgery.This issue affects Most And Least Read Posts Widget: from n/a through 2…
Update
|
CWE-352
Origin Validation Error
|
CVE-2024-49628
|
2024-10-23 03:31 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
732
|
6.0 |
MEDIUM
Local
|
cisco
|
ata_191_firmware ata_192_firmware
|
A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an authenticated, local attacker with high privileges to execute arbitrary commands as the root u…
Update
|
CWE-78
OS Command
|
CVE-2024-20461
|
2024-10-23 03:26 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
733
|
6.1 |
MEDIUM
Network
|
cisco
|
ata_191_firmware ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to conduct a reflected cross-site scrip…
Update
|
NVD-CWE-Other
|
CVE-2024-20460
|
2024-10-23 03:24 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
734
|
7.5 |
HIGH
Network
isc netapp
|
bind active_iq_unified_manager
|
To keep its cache database efficient, `named` running as a recursive resolver occasionally attempts to clean up the database. It uses several methods, including some that are asynchronous: a small ch…
Update
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2023-6516
|
2024-10-23 03:14 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
735
|
5.4 |
MEDIUM
Network
|
code-projects
|
blood_bank_system
|
A vulnerability has been found in code-projects Blood Bank System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /viewrequest.php. The manipulation leads to cr…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-10142
|
2024-10-23 03:11 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
736
|
8.8 |
HIGH
Network
|
esafenet
|
cdg
|
A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is the function connectLogout of the file /com/esafenet/servlet/ajax/MultiServerAjax.java. The manipulat…
Update
|
CWE-89
SQL Injection
|
CVE-2024-10134
|
2024-10-23 03:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
737
|
8.8 |
HIGH
Network
|
esafenet
|
cdg
|
A vulnerability has been found in ESAFENET CDG 5 and classified as critical. Affected by this vulnerability is the function updateNetSecPolicyPriority of the file /com/esafenet/servlet/ajax/NetSecPol…
Update
|
CWE-89
SQL Injection
|
CVE-2024-10133
|
2024-10-23 03:10 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
738
|
8.8 |
HIGH
Network
|
esafenet
|
cdg
|
A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects the function actionDelNetSecConfig of the file /com/esafenet/servlet/netSec/NetSecConfigService.java. The…
Update
|
CWE-89
SQL Injection
|
CVE-2024-10135
|
2024-10-23 03:09 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
739
|
7.2 |
HIGH
Network
|
cisco
|
ata_191_firmware ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series Analog Telephone Adapter firmware could allow an authenticated, remote attacker with high privileges to exe…
Update
|
CWE-78
OS Command
|
CVE-2024-20459
|
2024-10-23 03:06 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
740
|
8.2 |
HIGH
Network
cisco
|
ata_191_firmware ata_192_firmware
|
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, remote attacker to view or delete the configuration or …
Update
|
CWE-78
OS Command
|
CVE-2024-20458
|
2024-10-23 03:03 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|