|
313001
|
8.1 |
HIGH
Network
|
zen-cart
|
zen_cart
|
Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Zen Cart. Auth…
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2024-5762
|
2024-08-24 01:43 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313002
|
8.8 |
HIGH
Network
|
rockoa
|
xinhu
|
A vulnerability classified as critical was found in Xinhu RockOA 2.6.2. This vulnerability affects the function dataAction of the file /webmain/task/openapi/openmodhetongAction.php. The manipulation …
|
CWE-89
SQL Injection
|
CVE-2024-7327
|
2024-08-24 01:41 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313003
|
8.8 |
HIGH
Adjacent
|
autel
|
maxicharger_ac_elite_business_c50_firmware
|
Autel MaxiCharger AC Elite Business C50 AppAuthenExchangeRandomNum Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arb…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-7795
|
2024-08-24 01:39 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313004
|
7.8 |
HIGH
Local
|
logsign
|
unified_secops_platform
|
Logsign Unified SecOps Platform Incorrect Authorization Authentication Bypass Vulnerability. This vulnerability allows local attackers to bypass authentication on affected installations of Logsign Un…
|
CWE-863
Incorrect Authorization
|
CVE-2024-7604
|
2024-08-24 01:37 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313005
|
8.1 |
HIGH
Network
|
logsign
|
unified_secops_platform
|
Logsign Unified SecOps Platform Directory Traversal Arbitrary Directory Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary directories on affected installations of…
|
CWE-22
Path Traversal
|
CVE-2024-7603
|
2024-08-24 01:36 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313006
|
6.5 |
MEDIUM
Network
|
logsign
|
unified_secops_platform
|
Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Log…
|
CWE-22
Path Traversal
|
CVE-2024-7602
|
2024-08-24 01:36 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313007
|
8.1 |
HIGH
Network
|
logsign
|
unified_secops_platform
|
Logsign Unified SecOps Platform Directory data_export_delete_all Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected inst…
|
CWE-22
Path Traversal
|
CVE-2024-7601
|
2024-08-24 01:35 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313008
|
8.1 |
HIGH
Network
|
logsign
|
unified_secops_platform
|
Logsign Unified SecOps Platform Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of Logsign Un…
|
CWE-22
Path Traversal
|
CVE-2024-7600
|
2024-08-24 01:35 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313009
|
9.8 |
CRITICAL
Network
|
youdiancms
|
youdiancms
|
A vulnerability, which was classified as critical, was found in YouDianCMS 7. Affected is an unknown function of the file /Public/ckeditor/plugins/multiimage/dialogs/image_upload.php. The manipulatio…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-7329
|
2024-08-24 01:34 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313010
|
6.1 |
MEDIUM
Network
|
ckeditor
|
ckeditor
|
CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A potential vulnerability has been discovered in CKEditor 4 Code Snippet GeSHi plugin. The vulnerability allowed a reflected XSS …
|
CWE-79
Cross-site Scripting
|
CVE-2024-43407
|
2024-08-24 01:20 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
