|
831
|
- |
|
-
|
-
|
A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been declared as problematic. This vulnerability affects unknown code of the file betweendates-detailsreports.php. The m…
New
|
CWE-79
CWE-74
CWE-707
Cross-site Scripting
Injection
Improper Enforcement of Message or Data Structure
|
CVE-2024-10806
|
2024-11-5 10:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
832
|
- |
|
-
|
-
|
cobalt is a media downloader that doesn't piss you off. A malicious cobalt instance could serve links with the `javascript:` protocol, resulting in Cross-site Scripting (XSS) when the user tries to d…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-51498
|
2024-11-5 09:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
833
|
- |
|
-
|
-
|
WebFeed is a lightweight web feed reader extension for Firefox/Chrome. Multiple HTML injection vulnerabilities in WebFeed can lead to CSRF and UI spoofing attacks. A remote attacker can provide malic…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-50346
|
2024-11-5 09:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
834
|
- |
|
-
|
-
|
Combodo iTop is a simple, web based IT Service Management tool. Server, OS, DBMS, PHP, and iTop info (name, version and parameters) can be read by anyone having access to iTop URI. This issue has bee…
New
|
CWE-200
Information Exposure
|
CVE-2024-32870
|
2024-11-5 09:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
835
|
- |
|
-
|
-
|
Combodo iTop is a simple, web based IT Service Management tool. A CSRF can be performed on CSV import simulation. This issue has been fixed in versions 3.1.2 and 3.2.0. All users are advised to upgra…
New
|
CWE-352
Origin Validation Error
|
CVE-2024-31998
|
2024-11-5 09:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
836
|
- |
|
-
|
-
|
Combodo iTop is a simple, web based IT Service Management tool. By filling malicious code in a CSV content, an Cross-site Scripting (XSS) attack can be performed when importing this content. This iss…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-31448
|
2024-11-5 09:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
837
|
- |
|
-
|
-
|
Combodo iTop is a simple, web based IT Service Management tool. When displaying pages/ajax.render.php XSS are possible for scripts outside of script tags. This issue has been fixed in versions 2.7.9,…
New
|
-
|
CVE-2023-34445
|
2024-11-5 09:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
838
|
- |
|
-
|
-
|
Combodo iTop is a simple, web based IT Service Management tool. When displaying pages/ajax.searchform.php XSS are possible for scripts outside of script tags. This issue has been fixed in versions 2.…
New
|
CWE-79
Cross-site Scripting
|
CVE-2023-34444
|
2024-11-5 09:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
839
|
- |
|
-
|
-
|
Combodo iTop is a simple, web based IT Service Management tool. When displaying page Run queries Cross-site Scripting (XSS) are possible for scripts outside of script tags. This has been fixed in ver…
New
|
CWE-79
Cross-site Scripting
|
CVE-2023-34443
|
2024-11-5 09:15 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
840
|
7.8 |
HIGH
Local
|
-
|
-
|
A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker may be able to trigger a buffer overflow condition via a specially crafted payloa…
Update
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2024-9632
|
2024-11-5 09:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
