371
|
- |
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco Prime Access Registrar Appliance could allow an authenticated, remote attacker to conduct a cross-site scripting attack against a u…
New
|
CWE-79
Cross-site Scripting
|
CVE-2022-20626
|
2024-11-16 01:15 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
372
|
- |
|
-
|
-
|
In Cleo Harmony before 5.8.0.21, VLTrader before 5.8.0.21, and LexiCom before 5.8.0.21, there is an unrestricted file upload and download that could lead to remote code execution.
Update
|
-
|
CVE-2024-50623
|
2024-11-16 01:15 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
373
|
8.8 |
HIGH
Network
|
microsoft
|
sql_server_2016 sql_server_2017 sql_server_2019
|
SQL Server Native Client Remote Code Execution Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-49013
|
2024-11-16 01:14 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
374
|
6.5 |
MEDIUM
Network
|
ehues
|
gboy_custom_google_map
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ehues Gboy Custom Google Map allows Blind SQL Injection.This issue affects Gboy Custom Google Map…
Update
|
CWE-89
SQL Injection
|
CVE-2024-51882
|
2024-11-16 01:08 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
375
|
8.8 |
HIGH
Network
|
microsoft
|
sql_server_2016 sql_server_2017 sql_server_2019
|
SQL Server Native Client Remote Code Execution Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-49017
|
2024-11-16 01:07 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
376
|
8.8 |
HIGH
Network
|
microsoft
|
sql_server_2016 sql_server_2017 sql_server_2019
|
SQL Server Native Client Remote Code Execution Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-49016
|
2024-11-16 01:07 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
377
|
8.8 |
HIGH
Network
|
microsoft
|
sql_server_2016 sql_server_2017 sql_server_2019
|
SQL Server Native Client Remote Code Execution Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-49015
|
2024-11-16 01:07 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
378
|
8.8 |
HIGH
Network
|
microsoft
|
sql_server_2016 sql_server_2017 sql_server_2019
|
SQL Server Native Client Remote Code Execution Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-49018
|
2024-11-16 01:06 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
379
|
7.8 |
HIGH
Local
|
microsoft
|
sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022
|
Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability
Update
|
NVD-CWE-noinfo
|
CVE-2024-49043
|
2024-11-16 01:05 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
380
|
5.4 |
MEDIUM
Network
|
webangon
|
the_pack_elementor_addons
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webangon The Pack Elementor addons allows Stored XSS.This issue affects The Pack Elementor…
Update
|
CWE-79
Cross-site Scripting
|
CVE-2024-52356
|
2024-11-16 01:05 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|