|
391
|
6.1 |
MEDIUM
Network
|
cisco
|
firepower_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-20386
|
2024-11-6 01:05 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
392
|
- |
|
-
|
-
|
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function. This vulnerability allows attackers to execute arbitrar…
New
|
-
|
CVE-2024-51024
|
2024-11-6 01:04 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
393
|
- |
|
-
|
-
|
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySettings function. This vulnerability allows attackers to exe…
New
|
-
|
CVE-2024-51023
|
2024-11-6 01:04 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
394
|
- |
|
-
|
-
|
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file book_detail.php. The manipulation of th…
New
|
-
|
CVE-2024-10845
|
2024-11-6 01:04 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
395
|
- |
|
-
|
-
|
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file search.php. The manipulation of the argument s …
New
|
CWE-89
CWE-74
CWE-707
SQL Injection
Injection
Improper Enforcement of Message or Data Structure
|
CVE-2024-10844
|
2024-11-6 01:04 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
396
|
- |
|
-
|
-
|
In certain conditions a request directed to the Waybox Enel X Web management application could cause a denial-of-service (e.g. reboot).
New
|
-
|
CVE-2023-29115
|
2024-11-6 01:04 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
397
|
- |
|
-
|
-
|
A vulnerability, which was classified as problematic, has been found in romadebrian WEB-Sekolah 1.0. Affected by this issue is some unknown functionality of the file /Admin/Proses_Edit_Akun.php of th…
New
|
CWE-79
CWE-74
CWE-707
Cross-site Scripting
Injection
Improper Enforcement of Message or Data Structure
|
CVE-2024-10842
|
2024-11-6 01:04 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
398
|
- |
|
-
|
-
|
A vulnerability classified as critical was found in romadebrian WEB-Sekolah 1.0. Affected by this vulnerability is an unknown functionality of the file /Proses_Kirim.php of the component Mail Handler…
New
|
CWE-89
CWE-74
CWE-707
SQL Injection
Injection
Improper Enforcement of Message or Data Structure
|
CVE-2024-10841
|
2024-11-6 01:04 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
399
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The Ultimate Bootstrap Elements for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.6 via the 'ube_get_page_templates' functio…
New
|
CWE-200
Information Exposure
|
CVE-2024-10329
|
2024-11-6 01:04 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
400
|
- |
|
-
|
-
|
A vulnerability classified as problematic has been found in romadebrian WEB-Sekolah 1.0. Affected is an unknown function of the file /Admin/akun_edit.php of the component Backend. The manipulation of…
New
|
CWE-79
CWE-74
CWE-707
Cross-site Scripting
Injection
Improper Enforcement of Message or Data Structure
|
CVE-2024-10840
|
2024-11-6 01:04 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
