|
581
|
- |
|
-
|
-
|
A vulnerability in the Incoming Goods Suite allows a user with unprivileged access to the underlying system (e.g. local or via SSH) a privilege escalation to the administrative level due to the usage…
New
|
-
|
CVE-2024-11075
|
2024-11-19 23:15 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
582
|
- |
|
-
|
-
|
Heap-based Buffer Overflow and Uninitialized Variable vulnerabilities exist in the X_B and SAT file reading procedure in eDrawings from Release SOLIDWORKS 2024 through Release SOLIDWORKS 2025. These …
New
|
-
|
CVE-2024-10204
|
2024-11-19 23:15 |
2024-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
583
|
- |
|
-
|
-
|
The Really Simple Security (Free, Pro, and Pro Multisite) plugins for WordPress are vulnerable to authentication bypass in versions 9.0.0 to 9.1.1.1. This is due to improper user check error handling…
Update
|
CWE-288
Authentication Bypass Using an Alternate Path or Channel
|
CVE-2024-10924
|
2024-11-19 23:15 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
584
|
- |
|
-
|
-
|
Versions of the package cross-spawn before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash th…
Update
|
-
|
CVE-2024-21538
|
2024-11-19 23:15 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
585
|
- |
|
-
|
-
|
Filament is a collection of full-stack components for accelerated Laravel development. All Filament features that interact with storage use the `default_filesystem_disk` config option. This allows th…
Update
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2024-51758
|
2024-11-19 23:15 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
586
|
5.9 |
MEDIUM
Network
|
traefik
|
traefik
|
Traefik is an open source HTTP reverse proxy and load balancer. When Traefik is configured to use the `HTTPChallenge` to generate and renew the Let's Encrypt TLS certificates, the delay authorized to…
Update
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2023-47124
|
2024-11-19 23:15 |
2023-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
587
|
7.8 |
HIGH
Local
|
google
|
android
|
In PMRWritePMPageList of pmr.c, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution p…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-23715
|
2024-11-19 23:03 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
588
|
9.8 |
CRITICAL
Network
janeczku
|
calibre-web
|
Weak Password Requirements in GitHub repository janeczku/calibre-web prior to 0.6.20.
Update
|
CWE-521
Weak Password Requirements
|
CVE-2023-2106
|
2024-11-19 22:55 |
2023-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
589
|
9.8 |
CRITICAL
Network
janeczku
|
calibre-web
|
Improper Restriction of Excessive Authentication Attempts in GitHub repository janeczku/calibre-web prior to 0.6.20.
Update
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2022-2525
|
2024-11-19 22:55 |
2023-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
590
|
9.8 |
CRITICAL
Network
janeczku
|
calibre-web
|
Calibre-Web before 0.6.18 allows user table SQL Injection.
Update
|
CWE-89
SQL Injection
|
CVE-2022-30765
|
2024-11-19 22:55 |
2022-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
