|
1031
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability, which was classified as critical, has been found in code-projects Simple Plugins Car Rental Management 1.0. Affected by this issue is some unknown functionality of the file /admin/ap…
|
CWE-89
CWE-74
SQL Injection
Injection
|
CVE-2025-0874
|
2025-01-31 03:15 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1032
|
- |
|
-
|
-
|
A data exposure vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation FactoryTalk® AssetCentre. The vulnerability exists due to insecure storage of FactoryTalk® Security use…
|
-
|
CVE-2025-0498
|
2025-01-31 03:15 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1033
|
- |
|
-
|
-
|
A data exposure vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation FactoryTalk® AssetCentre. The vulnerability exists due to storing credentials in the configuration file…
|
-
|
CVE-2025-0497
|
2025-01-31 03:15 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1034
|
- |
|
-
|
-
|
An encryption vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation FactoryTalk® AssetCentre. The vulnerability exists due to a weak encryption methodology and could allow a…
|
-
|
CVE-2025-0477
|
2025-01-31 03:15 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1035
|
- |
|
-
|
-
|
Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021 R2 due to adding InstallScript custom action to a Basic MSI or InstallScript MSI project extracting fe…
|
-
|
CVE-2023-29080
|
2025-01-31 03:15 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1036
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os
ipados
|
This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4, iOS 18.3 and iPadOS 18.3. Restoring a maliciously crafted backup file may lead to modification of pr…
|
CWE-59
Link Following
|
CVE-2025-24104
|
2025-01-31 03:15 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1037
|
8.8 |
HIGH
Network
|
apple
|
watchos
ipados
macos
tvos
safari
visionos
iphone_os
|
The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.2, tvOS 18.2, Safari 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2. Processing maliciously …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-54543
|
2025-01-31 03:13 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1038
|
8.8 |
HIGH
Network
|
apple
|
macos
ipados
iphone_os
safari
|
A privacy issue was addressed with improved handling of files. This issue is fixed in macOS Sequoia 15.3, Safari 18.3, iOS 18.3 and iPadOS 18.3. Copying a URL from Web Inspector may lead to command i…
|
CWE-77
Command Injection
|
CVE-2025-24150
|
2025-01-31 03:10 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1039
|
3.3 |
LOW
Local
|
apple
|
macos
ipados
iphone_os
|
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.3, iOS 18.3 and iPadOS 18.3. An app may be able to view a contact's phone n…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2025-24145
|
2025-01-31 03:04 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1040
|
7.5 |
HIGH
Network
jyothisjoy
|
eventer
|
The Eventer plugin for WordPress is vulnerable to SQL Injection via the 'event' parameter in the 'eventer_get_attendees' function in all versions up to, and including, 3.9.8 due to insufficient escap…
|
CWE-89
SQL Injection
|
CVE-2024-11135
|
2025-01-31 03:03 |
2025-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
