|
313331
|
- |
|
-
|
-
|
Renwoxing Enterprise Intelligent Management System before v3.0 was discovered to contain a SQL injection vulnerability via the parid parameter at /fx/baseinfo/SearchInfo.
|
-
|
CVE-2024-43040
|
2024-09-12 23:35 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313332
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fixed bug on error when unloading amdgpu
Fixed bug on error when unloading amdgpu.
The error message is as follows:
…
|
NVD-CWE-noinfo
|
CVE-2023-52912
|
2024-09-12 23:35 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313333
|
9.0 |
CRITICAL
Network
|
beckhoff
|
twincat\/bsd
ipc_diagnostics_package
|
The IPC-Diagnostics package in TwinCAT/BSD is susceptible to improper input neutralization by a low-privileged local attacker.
|
CWE-79
Cross-site Scripting
|
CVE-2024-41174
|
2024-09-12 23:33 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313334
|
5.4 |
MEDIUM
Network
|
ankitpokhrel
|
dynamic_featured_image
|
The Dynamic Featured Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘dfiFeatured’ parameter in all versions up to, and including, 3.7.0 due to insufficient input sani…
|
CWE-79
Cross-site Scripting
|
CVE-2024-6929
|
2024-09-12 23:32 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313335
|
5.3 |
MEDIUM
Network
|
msoftplugins
|
security_antivirus_firewall
|
The Security, Antivirus, Firewall – S.A.F plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.3.5. This is due to insufficient restrictions on where the IP A…
|
NVD-CWE-Other
|
CVE-2022-4529
|
2024-09-12 23:29 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313336
|
5.5 |
MEDIUM
Local
|
beckhoff
|
ipc_diagnostics_package
twincat\/bsd
|
The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a local denial-of-service attack by a low privileged attacker.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-41175
|
2024-09-12 23:25 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313337
|
4.3 |
MEDIUM
Network
|
helloasso
|
helloasso
|
The HelloAsso plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ha_ajax' function in all versions up to, and including, 1.1.10. This ma…
|
CWE-862
Missing Authorization
|
CVE-2024-7605
|
2024-09-12 23:24 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313338
|
- |
|
-
|
-
|
CVE-2024-45824 IMPACT
A remote
code vulnerability exists in the affected products. The vulnerability occurs
when chained with Path Traversal, Command Injection, and XSS Vulnerabilities
and allows …
|
-
|
CVE-2024-45824
|
2024-09-12 23:16 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313339
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fou: remove warn in gue_gro_receive on unsupported protocol
Drop the WARN_ON_ONCE inn gue_gro_receive if the encapsulated type is…
|
NVD-CWE-noinfo
|
CVE-2024-44940
|
2024-09-12 23:10 |
2024-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313340
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
io_uring/poll: add hash if ready poll request can't complete inline
If we don't, then we may lose access to it completely, leadin…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2023-52914
|
2024-09-12 23:07 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
