1411
|
- |
|
-
|
-
|
ManageEngine Endpoint Central versions before 11.3.2440.09 are vulnerable to IDOR vulnerability which allows the attacker to change the username in the chat.
|
-
|
CVE-2024-9097
|
2025-02-5 22:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1412
|
- |
|
-
|
-
|
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.7 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. It was possible…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-2878
|
2025-02-5 22:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1413
|
6.4 |
MEDIUM
Network
|
-
|
-
|
IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2
is vulnerable to stored cross-site scripting…
|
CWE-79
Cross-site Scripting
|
CVE-2024-52365
|
2025-02-5 21:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1414
|
5.4 |
MEDIUM
Network
|
-
|
-
|
IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2 is vulnerable to cross-site scripting. This vu…
|
CWE-79
Cross-site Scripting
|
CVE-2024-52364
|
2025-02-5 21:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1415
|
4.3 |
MEDIUM
Network
|
-
|
-
|
IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2
allows restricting access to organizationa…
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2024-49348
|
2025-02-5 21:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1416
|
- |
|
-
|
-
|
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. It was possible…
|
CWE-862
Missing Authorization
|
CVE-2024-3976
|
2025-02-5 21:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1417
|
- |
|
-
|
-
|
An issue was discovered in GitLab CE/EE affecting all versions starting from 13.6 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, where viewing diffs of M…
|
CWE-407
Inefficient Algorithmic Complexity
|
CVE-2024-9631
|
2025-02-5 20:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1418
|
- |
|
-
|
-
|
An issue was discovered in GitLab CE/EE affecting all versions prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2, which allows a subdomain takeover in GitLa…
|
CWE-1023
|
CVE-2024-5528
|
2025-02-5 20:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1419
|
7.1 |
HIGH
Network
|
-
|
-
|
IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and 12.0.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remo…
|
CWE-611
XXE
|
CVE-2024-49352
|
2025-02-5 20:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1420
|
- |
|
-
|
-
|
An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, which allowed cross project…
|
CWE-286
Incorrect User Management
|
CVE-2024-6356
|
2025-02-5 19:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|