|
661
|
7.8 |
HIGH
Local
|
ashlar
|
graphite
|
Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-13050
|
2025-01-4 02:41 |
2024-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
662
|
7.8 |
HIGH
Local
|
ashlar
|
cobalt
|
Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellu…
|
CWE-843
Type Confusion
|
CVE-2024-13049
|
2025-01-4 02:39 |
2024-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
663
|
7.8 |
HIGH
Local
|
ashlar
|
cobalt
|
Ashlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-13048
|
2025-01-4 02:39 |
2024-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
664
|
7.8 |
HIGH
Local
|
ashlar
|
cobalt
|
Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellu…
|
CWE-843
Type Confusion
|
CVE-2024-13047
|
2025-01-4 02:39 |
2024-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
665
|
7.8 |
HIGH
Local
|
ashlar
|
cobalt
|
Ashlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-13046
|
2025-01-4 02:38 |
2024-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
666
|
7.8 |
HIGH
Local
|
ashlar
|
cobalt
|
Ashlar-Vellum Cobalt AR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-13045
|
2025-01-4 02:38 |
2024-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
667
|
7.8 |
HIGH
Local
|
ashlar
|
cobalt
|
Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-13044
|
2025-01-4 02:38 |
2024-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
668
|
- |
|
-
|
-
|
Trix is a what-you-see-is-what-you-get rich text editor for everyday writing. Versions prior to 2.1.12 are vulnerable to cross-site scripting when pasting malicious code in the link field. An attacke…
|
CWE-79
Cross-site Scripting
|
CVE-2025-21610
|
2025-01-4 02:15 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
669
|
- |
|
-
|
-
|
SiYuan is self-hosted, open source personal knowledge management software. SiYuan Note version 3.1.18 has an arbitrary file deletion vulnerability. The vulnerability exists in the `POST /api/history/…
|
CWE-552
CWE-459
Files or Directories Accessible to External Parties
Incomplete Cleanup
|
CVE-2025-21609
|
2025-01-4 02:15 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
670
|
- |
|
-
|
-
|
Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, both in karmadactl and karmada-op…
|
CWE-22
Path Traversal
|
CVE-2024-56514
|
2025-01-4 02:15 |
2025-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
