|
1241
|
- |
|
-
|
-
|
Liferay Portal 7.2.0 through 7.3.5, and older unsupported versions, and Liferay DXP 7.3 before fix pack 1, 7.2 before fix pack 17, and older unsupported versions does not obfuscate password reminder …
|
-
|
CVE-2021-29038
|
2024-11-16 03:35 |
2024-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1242
|
9.8 |
CRITICAL
Network
dlink
|
dsl6740c_firmware
|
The D-Link DSL6740C modem has an Incorrect Use of Privileged APIs vulnerability, allowing unauthenticated remote attackers to modify any user’s password by leveraging the API, thereby granting access…
|
CWE-648
Incorrect Use of Privileged APIs
|
CVE-2024-11068
|
2024-11-16 03:24 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1243
|
7.5 |
HIGH
Network
dlink
|
dsl6740c_firmware
|
The D-Link DSL6740C modem has a Path Traversal Vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. Additionally, since the device's …
|
CWE-23
Relative Path Traversal
|
CVE-2024-11067
|
2024-11-16 03:23 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1244
|
7.2 |
HIGH
Network
|
dlink
|
dsl6740c_firmware
|
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through the specific web p…
|
CWE-78
OS Command
|
CVE-2024-11066
|
2024-11-16 03:22 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1245
|
7.2 |
HIGH
Network
|
dlink
|
dsl6740c_firmware
|
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functio…
|
CWE-78
OS Command
|
CVE-2024-11065
|
2024-11-16 03:22 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1246
|
7.2 |
HIGH
Network
|
dlink
|
dsl6740c_firmware
|
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functio…
|
CWE-78
OS Command
|
CVE-2024-11064
|
2024-11-16 03:22 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1247
|
7.2 |
HIGH
Network
|
dlink
|
dsl6740c_firmware
|
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functio…
|
CWE-78
OS Command
|
CVE-2024-11063
|
2024-11-16 03:21 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1248
|
7.2 |
HIGH
Network
|
dlink
|
dsl6740c_firmware
|
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functio…
|
CWE-78
OS Command
|
CVE-2024-11062
|
2024-11-16 03:21 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1249
|
5.3 |
MEDIUM
Network
expressjs
|
basic-auth-connect
|
basic-auth-connect is Connect's Basic Auth middleware in its own module. basic-auth-connect < 1.1.0 uses a timing-unsafe equality comparison that can leak timing information. This issue has been fixe…
|
NVD-CWE-Other
|
CVE-2024-47178
|
2024-11-16 03:05 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1250
|
6.1 |
MEDIUM
Network
|
clinical-genomics
|
scout
|
Scout is a web-based visualizer for VCF-files. Open redirect vulnerability allows performing phishing attacks on users by redirecting them to malicious page. /login API endpoint is vulnerable to open…
|
CWE-601
Open Redirect
|
CVE-2024-47530
|
2024-11-16 03:03 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
