1891
|
5.5 |
MEDIUM
Local
|
imagemagick
|
imagemagick
|
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.
|
CWE-20
Improper Input Validation
|
CVE-2014-9808
|
2024-11-1 04:49 |
2017-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1892
|
5.3 |
MEDIUM
Network
idopesok
|
zsa
|
zsa is a library for building typesafe server actions in Next.js. All users are impacted. The zsa application transfers the parse error stack from the server to the client in production build mode. T…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2024-37162
|
2024-11-1 04:43 |
2024-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1893
|
6.5 |
MEDIUM
Network
|
expresstech
|
quiz_and_survey_master
|
The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress plugin for WordPress is vulnerable to SQL Injection via the 'question_id' parameter in all versions up to, and including, …
|
CWE-89
SQL Injection
|
CVE-2024-3592
|
2024-11-1 04:40 |
2024-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1894
|
5.4 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) …
|
CWE-79
Cross-site Scripting
|
CVE-2024-20364
|
2024-11-1 04:36 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1895
|
5.4 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack …
|
CWE-79
Cross-site Scripting
|
CVE-2024-20269
|
2024-11-1 04:35 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1896
|
- |
|
-
|
-
|
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Data is sent between client and server with encryption. However, the key is derived from the string "(c)2007 UCI Software Gm…
|
-
|
CVE-2024-45165
|
2024-11-1 04:35 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1897
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Data Visualization). The supported version that is affected is 7.0.0.0.0. Easily exploit…
|
-
|
CVE-2024-21099
|
2024-11-1 04:35 |
2024-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1898
|
- |
|
-
|
-
|
Open Source Medicine Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the date parameter at /admin/reports/index.php.
|
-
|
CVE-2024-28303
|
2024-11-1 04:35 |
2024-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1899
|
- |
|
-
|
-
|
Directory traversal vulnerability exists in a-blog cms Ver.3.1.x series Ver.3.1.9 and earlier, Ver.3.0.x series Ver.3.0.30 and earlier, Ver.2.11.x series Ver.2.11.59 and earlier, Ver.2.10.x series Ve…
|
-
|
CVE-2024-27279
|
2024-11-1 04:35 |
2024-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1900
|
5.4 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack …
|
CWE-79
Cross-site Scripting
|
CVE-2024-20298
|
2024-11-1 04:25 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|