|
1211
|
- |
|
-
|
-
|
Vulnerability in Drupal Megamenu Framework.This issue affects Megamenu Framework: *.*.
|
-
|
CVE-2024-13299
|
2025-01-15 00:15 |
2025-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1212
|
- |
|
-
|
-
|
An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiMail versions 7.2.0 through 7.2.4 and 7.0.0 through 7.0.6 and 6.4.0 through 6.4.7, Forti…
|
CWE-78
OS Command
|
CVE-2024-56497
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1213
|
- |
|
-
|
-
|
A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiWeb versions 6.3.17 through 7.6.1 allows attacker to gain information disclosure via crafted SQ…
|
CWE-89
SQL Injection
|
CVE-2024-55593
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1214
|
- |
|
-
|
-
|
An improper neutralization of crlf sequences in http headers ('http response splitting') in Fortinet FortiOS 7.2.0 through 7.6.0, FortiProxy 7.2.0 through 7.4.5 allows attacker to execute unauthorize…
|
CWE-113
HTTP Response Splitting
|
CVE-2024-54021
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1215
|
- |
|
-
|
-
|
An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability [CWE-89] in FortiSIEM ersion 7.1.7 and below, version 7.1.0, version 7.0.3 and below, version 6.7…
|
CWE-89
SQL Injection
|
CVE-2024-52969
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1216
|
- |
|
-
|
-
|
An improper neutralization of script-related html tags in a web page (basic xss) in Fortinet FortiPortal 6.0.0 through 6.0.14 allows attacker to execute unauthorized code or commands via html injecti…
|
CWE-80
Basic XSS
|
CVE-2024-52967
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1217
|
- |
|
-
|
-
|
A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.0 through 7.0.16, 6.4.0 through 6.4.15 allows attacker to trigger a denial of service via spec…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-52963
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1218
|
- |
|
-
|
-
|
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiManager versions 7.6.0 through 7.6.1, versions 7.4.5 through 7.4.0, and versions 7.2.1 th…
|
CWE-78
OS Command
|
CVE-2024-50566
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1219
|
- |
|
-
|
-
|
A use of hard-coded cryptographic key in Fortinet FortiClientWindows version 7.4.0, 7.2.x all versions, 7.0.x all versions, and 6.4.x all versions may allow a low-privileged user to decrypt interproc…
|
CWE-321
Use of Hard-coded Cryptographic Key
|
CVE-2024-50564
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1220
|
- |
|
-
|
-
|
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiSOAR 7.3.0 through 7.3.3, 7.2.1 through 7.2.2 may allow an authenticated attacker to perform a stored cro…
|
CWE-79
Cross-site Scripting
|
CVE-2024-48893
|
2025-01-14 23:15 |
2025-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
