|
1281
|
5.4 |
MEDIUM
Network
|
genoo
|
genoo
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Genoo, LLC Genoo allows DOM-Based XSS.This issue affects Genoo: from n/a through 6.0.10.
|
CWE-79
Cross-site Scripting
|
CVE-2024-51605
|
2024-11-16 01:31 |
2024-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1282
|
6.1 |
MEDIUM
Network
|
alist_project
|
alist
|
AList is a file list program that supports multiple storages. AList contains a reflected cross-site scripting vulnerability in helper.go. The endpoint /i/:link_name takes in a user-provided value and…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47067
|
2024-11-16 01:28 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1283
|
5.4 |
MEDIUM
Network
|
mirceatm
|
nmr_strava_activities
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mircea N. NMR Strava activities allows DOM-Based XSS.This issue affects NMR Strava activit…
|
CWE-79
Cross-site Scripting
|
CVE-2024-51603
|
2024-11-16 01:24 |
2024-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1284
|
5.4 |
MEDIUM
Network
|
jumpstartcreatives
|
media_modal
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Carlo Andro Mabugay Media Modal allows DOM-Based XSS.This issue affects Media Modal: from …
|
CWE-79
Cross-site Scripting
|
CVE-2024-51604
|
2024-11-16 01:19 |
2024-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1285
|
5.4 |
MEDIUM
Network
|
cyberchimps
|
responsive_addons_for_elementor
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Cyberchimps Responsive Addons for Elementor allows DOM-Based XSS.This issue affects Respon…
|
CWE-79
Cross-site Scripting
|
CVE-2024-52358
|
2024-11-16 01:17 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1286
|
8.8 |
HIGH
Network
|
microsoft
|
sql_server_2016
sql_server_2017
sql_server_2019
|
SQL Server Native Client Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-49012
|
2024-11-16 01:16 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1287
|
8.8 |
HIGH
Network
|
microsoft
|
sql_server_2016
sql_server_2017
sql_server_2019
|
SQL Server Native Client Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-49011
|
2024-11-16 01:16 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1288
|
- |
|
-
|
-
|
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-2414. Reason: This candidate is a reservation duplicate of CVE-2023-2414. Notes: All CVE users should reference CV…
|
-
|
CVE-2024-7865
|
2024-11-16 01:15 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1289
|
- |
|
-
|
-
|
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-2414. Reason: This candidate is a reservation duplicate of CVE-2023-2414. Notes: All CVE users should reference C…
|
-
|
CVE-2024-6413
|
2024-11-16 01:15 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1290
|
- |
|
-
|
-
|
In Cleo Harmony before 5.8.0.21, VLTrader before 5.8.0.21, and LexiCom before 5.8.0.21, there is an unrestricted file upload and download that could lead to remote code execution.
|
-
|
CVE-2024-50623
|
2024-11-16 01:15 |
2024-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
