|
1151
|
- |
|
-
|
-
|
snowflake-connector-net is the Snowflake Connector for .NET. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for .NET in which files downloaded from stages are temporar…
|
CWE-276
Incorrect Default Permissions
|
CVE-2025-24788
|
2025-01-30 06:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1152
|
7.3 |
HIGH
Network
-
|
-
|
A vulnerability has been found in Aridius XYZ up to 20240927 on OpenCart and classified as critical. This vulnerability affects the function loadMore of the component News. The manipulation leads to …
|
CWE-20
CWE-502
Improper Input Validation
Deserialization of Untrusted Data
|
CVE-2025-0841
|
2025-01-30 06:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1153
|
- |
|
-
|
-
|
7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is requi…
|
-
|
CVE-2025-0411
|
2025-01-30 06:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1154
|
- |
|
-
|
-
|
mySCADA myPRO does not properly neutralize POST requests sent to a specific port with email information. This vulnerability could be exploited by an attacker to execute arbitrary commands on the affe…
|
CWE-78
OS Command
|
CVE-2025-20061
|
2025-01-30 05:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1155
|
- |
|
-
|
-
|
mySCADA myPRO does not properly neutralize POST requests sent to a specific port with version information. This vulnerability could be exploited by an attacker to execute arbitrary commands on the af…
|
CWE-78
OS Command
|
CVE-2025-20014
|
2025-01-30 05:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1156
|
5.0 |
MEDIUM
Network
|
-
|
-
|
A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects the function disassemble_bytes of the file binutils/objdump.c. The manipulation of the argumen…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2025-0840
|
2025-01-30 05:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1157
|
- |
|
-
|
-
|
Insertion of Sensitive Information into Log File vulnerability observed in FLEXON. Some information may be improperly disclosed through https access.
This issue affects FLXEON through <= 9.3.4.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2024-48852
|
2025-01-30 04:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1158
|
- |
|
-
|
-
|
Missing Origin Validation in WebSockets vulnerability in FLXEON. Session management was not sufficient to prevent unauthorized HTTPS requests. This issue affects FLXEON: through <= 9.3.4.
|
CWE-1385
Missing Origin Validation in WebSockets
|
CVE-2024-48849
|
2025-01-30 04:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1159
|
- |
|
-
|
-
|
A Code Injection vulnerability was identified in GitHub Enterprise Server that allowed attackers to inject malicious code into the query selector via the identity property in the message handling fun…
|
-
|
CVE-2024-10001
|
2025-01-30 04:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1160
|
- |
|
-
|
-
|
regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1.
|
CWE-20
CWE-345
Improper Input Validation
Insufficient Verification of Data Authenticity
|
CVE-2025-24882
|
2025-01-30 03:15 |
2025-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
