|
441
|
- |
|
-
|
-
|
Missing Authorization vulnerability in Smackcoders SendGrid for WordPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SendGrid for WordPress: from n/a t…
New
|
CWE-862
Missing Authorization
|
CVE-2025-23423
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
442
|
- |
|
-
|
-
|
Matrix Media Repo (MMR) is a highly configurable multi-homeserver media repository for Matrix. If SVG or JPEGXL thumbnailers are enabled (they are disabled by default), a user may upload a file which…
New
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-56515
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
443
|
- |
|
-
|
-
|
Zulip server provides an open-source team chat that helps teams stay productive and focused. Zulip Server 7.0 and above are vulnerable to an information disclose attack, where, if a Zulip server is h…
New
|
CWE-200
Information Exposure
|
CVE-2024-56136
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
444
|
- |
|
-
|
-
|
Matrix Media Repo (MMR) is a highly configurable multi-homeserver media repository for Matrix. MMR makes requests to other servers as part of normal operation, and these resource owners can return la…
New
|
CWE-789
Memory Allocation with Excessive Size Value
|
CVE-2024-52791
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
445
|
- |
|
-
|
-
|
Matrix Media Repo (MMR) is a highly configurable multi-homeserver media repository for Matrix. Matrix Media Repo (MMR) is vulnerable to server-side request forgery, serving content from a private net…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-52602
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
446
|
- |
|
-
|
-
|
OpenObserve is a cloud-native observability platform. A vulnerability in the user management endpoint `/api/{org_id}/users/{email_id}` allows an "Admin" role user to remove a "Root" user from the org…
New
|
CWE-287
CWE-284
CWE-285
CWE-269
CWE-272
Improper Authentication
Improper Access Control
Improper Authorization
Improper Privilege Management
Least Privilege Violation
|
CVE-2024-55954
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
447
|
- |
|
-
|
-
|
Matrix Media Repo (MMR) is a highly configurable multi-homeserver media repository for Matrix. MMR before version 1.3.5 is vulnerable to unbounded disk consumption, where an unauthenticated adversary…
New
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-36403
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
448
|
- |
|
-
|
-
|
Matrix Media Repo (MMR) is a highly configurable multi-homeserver media repository for Matrix. MMR before version 1.3.5 allows, by design, unauthenticated remote participants to trigger a download an…
New
|
CWE-287
Improper Authentication
|
CVE-2024-36402
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
449
|
- |
|
-
|
-
|
An access control issue in the component formDMZ.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the DMZ service of the device via a crafted POST request.
New
|
-
|
CVE-2024-57684
|
2025-01-17 05:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
450
|
- |
|
-
|
-
|
Mattermost Mobile versions <=2.22.0 fail to properly handle posts with attachments containing fields that cannot be cast to a String, which allows an attacker to cause the mobile to crash via creatin…
New
|
-
|
CVE-2025-20630
|
2025-01-17 04:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
