|
313861
|
8.8 |
HIGH
Network
|
lfedge
|
ekuiper
|
LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. A user could utilize and exploit SQL Injection to allow the execution of …
|
CWE-89
SQL Injection
|
CVE-2024-43406
|
2024-08-27 03:30 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313862
|
9.8 |
CRITICAL
Network
|
megacord
|
megabot
|
MEGABOT is a fully customized Discord bot for learning and fun. The `/math` command and functionality of MEGABOT versions < 1.5.0 contains a remote code execution vulnerability due to a Python `eval(…
|
CWE-94
Code Injection
|
CVE-2024-43404
|
2024-08-27 03:29 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313863
|
4.3 |
MEDIUM
Network
|
apolloconfig
|
apollo
|
Apollo is a configuration management system. A vulnerability exists in the synchronization configuration feature that allows users to craft specific requests to bypass permission checks. This exploit…
|
NVD-CWE-Other
|
CVE-2024-43397
|
2024-08-27 03:28 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313864
|
4.3 |
MEDIUM
Network
|
umbraco
|
umbraco_cms
|
Umbraco CMS is an ASP.NET CMS. An authenticated user can access a few unintended endpoints. This issue is fixed in 14.1.2.
|
NVD-CWE-Other
|
CVE-2024-43377
|
2024-08-27 03:26 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313865
|
5.3 |
MEDIUM
Network
|
umbraco
|
umbraco_cms
|
Umbraco is an ASP.NET CMS. Some endpoints in the Management API can return stack trace information, even when Umbraco is not in debug mode. This vulnerability is fixed in 14.1.2.
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2024-43376
|
2024-08-27 03:24 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313866
|
7.5 |
HIGH
Network
|
apolloconfig
|
apollo
|
An issue in apollocongif apollo v.2.2.0 allows a remote attacker to obtain sensitive information via a crafted request.
|
NVD-CWE-noinfo
|
CVE-2024-42662
|
2024-08-27 03:22 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313867
|
6.5 |
MEDIUM
Network
|
bitapps
|
contact_form_builder
|
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to arbitrary file deletion due to insuff…
|
CWE-22
Path Traversal
|
CVE-2024-7782
|
2024-08-27 03:21 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313868
|
9.0 |
CRITICAL
Network
|
bitapps
|
contact_form_builder
|
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to arbitrary file read and deletion due …
|
CWE-22
Path Traversal
|
CVE-2024-7777
|
2024-08-27 03:19 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313869
|
7.2 |
HIGH
Network
|
bitapps
|
contact_form_builder
|
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to generic SQL Injection via the id para…
|
CWE-89
SQL Injection
|
CVE-2024-7780
|
2024-08-27 03:19 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313870
|
4.8 |
MEDIUM
Network
|
bitapps
|
contact_form_builder
|
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to arbitrary JavaScript file uploads due…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7775
|
2024-08-27 03:18 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
