|
313981
|
8.1 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price List). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability all…
|
NVD-CWE-noinfo
|
CVE-2024-21266
|
2024-10-22 00:49 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313982
|
8.1 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site Hierarchy Flows). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability a…
|
NVD-CWE-noinfo
|
CVE-2024-21265
|
2024-10-22 00:49 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313983
|
8.0 |
HIGH
Network
|
microfocus
|
application_automation_tools
|
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and …
|
CWE-611
XXE
|
CVE-2024-4184
|
2024-10-21 23:09 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313984
|
8.0 |
HIGH
Network
|
microfocus
|
application_automation_tools
|
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and …
|
CWE-611
XXE
|
CVE-2024-4189
|
2024-10-21 23:08 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313985
|
5.5 |
MEDIUM
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A privileged user could exploit this vulnerability to expose sens…
|
CWE-611
XXE
|
CVE-2024-45072
|
2024-10-21 22:41 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313986
|
4.8 |
MEDIUM
Network
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering t…
|
CWE-79
Cross-site Scripting
|
CVE-2024-45071
|
2024-10-21 22:41 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313987
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: fix state management in error path of log writing function
After commit a694291a6211 ("nilfs2: separate wait function fro…
|
NVD-CWE-noinfo
|
CVE-2024-47669
|
2024-10-21 22:28 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313988
|
7.5 |
HIGH
Network
|
rockwellautomation
|
controllogix_5580_firmware
controllogix_5580_process_firmware
guardlogix_5580_firmware
compactlogix_5380_firmware
compact_guardlogix_5380_sil_2_firmware
compact_guardlogix_5380_sil_3_f…
|
CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html and send a specially crafted CIP message to the device. If exploited, a threat actor co…
|
NVD-CWE-noinfo
|
CVE-2024-6207
|
2024-10-21 22:20 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313989
|
- |
|
-
|
-
|
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
-
|
CVE-2024-47722
|
2024-10-21 22:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313990
|
8.8 |
HIGH
Network
|
code-projects
|
pharmacy_management_system
|
A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. This issue affects some unknown processing of the file /php/manage_medicine_stock.ph…
|
CWE-89
SQL Injection
|
CVE-2024-10024
|
2024-10-21 22:15 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
