1251
|
6.1 |
MEDIUM
Network
|
phpgurukul
|
online_dj_booking_management_system
|
A Reflected Cross Site Scripting (XSS) vulnerability was found in /odms/admin/booking-search.php in PHPGurukul Online DJ Booking Management System 1.0, which allows remote attackers to execute arbitr…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-51076
|
2024-11-4 22:41 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1252
|
6.1 |
MEDIUM
Network
|
phpgurukul
|
online_dj_booking_management_system
|
A Reflected Cross Site Scripting (XSS) vulnerability was found in /odms/admin/user-search.php in PHPGurukul Online DJ Booking Management System v1.0, which allows remote attackers to execute arbitrar…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-51075
|
2024-11-4 22:41 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1253
|
6.1 |
MEDIUM
Network
|
phpgurukul
|
ifsc_code_finder
|
A Reflected Cross Site Scripting (XSS) vulnerability was found in /ifscfinder/admin/profile.php in PHPGurukul IFSC Code Finder Project v1.0, which allows remote attackers to execute arbitrary code vi…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-51181
|
2024-11-4 22:39 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1254
|
6.1 |
MEDIUM
Network
|
phpgurukul
|
ifsc_code_finder
|
A Reflected Cross Site Scripting (XSS) vulnerability was found in /ifscfinder/index.php in PHPGurukul IFSC Code Finder Project v1.0, which allows remote attackers to execute arbitrary code via the "s…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-51180
|
2024-11-4 22:37 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1255
|
6.5 |
MEDIUM
Network
|
mozilla
|
firefox_focus
|
Focus was incorrectly allowing internal links to utilize the app scheme used for deeplinking, which could result in links potentially circumventing some URL safety checks This vulnerability affects F…
Update
|
NVD-CWE-noinfo
|
CVE-2024-10474
|
2024-11-4 22:34 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1256
|
6.5 |
MEDIUM
Network
|
mozilla
|
thunderbird firefox
|
Truncation of a long URL could have allowed origin spoofing in a permission prompt. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.
Update
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2024-10462
|
2024-11-4 22:32 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1257
|
6.5 |
MEDIUM
Network
|
mozilla
|
thunderbird firefox
|
Video frames could have been leaked between origins in some situations. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Firefox ESR < 115.17, Thunderbird < 128.4, and Thunderbird < 132.
Update
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-10463
|
2024-11-4 22:31 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1258
|
6.5 |
MEDIUM
Network
|
mozilla
|
thunderbird firefox
|
A clipboard "paste" button could persist across tabs which allowed a spoofing attack. This vulnerability affects Firefox < 132, Firefox ESR < 128.4, Thunderbird < 128.4, and Thunderbird < 132.
Update
|
CWE-290
Authentication Bypass by Spoofing
|
CVE-2024-10465
|
2024-11-4 22:30 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1259
|
6.5 |
MEDIUM
Network
|
mozilla
|
thunderbird firefox
|
Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser. This was addressed by introducing rate-limiting to this API. This vulnerabi…
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2024-10464
|
2024-11-4 22:30 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1260
|
5.3 |
MEDIUM
Network
|
mozilla
|
firefox thunderbird
|
Potential race conditions in IndexedDB could have caused memory corruption, leading to a potentially exploitable crash. This vulnerability affects Firefox < 132 and Thunderbird < 132.
Update
|
CWE-362
Race Condition
|
CVE-2024-10468
|
2024-11-4 22:29 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|