|
311561
|
- |
|
-
|
-
|
A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.1.0.4 could allow an unauthenticated attacker to conduct an unauthorized access attack due to inadequate acc…
|
-
|
CVE-2024-42514
|
2024-10-8 04:37 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311562
|
5.4 |
MEDIUM
Network
|
connekthq
|
ajax_load_more
|
The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘button_label’ parameter in all versions up to, and including, 7.1.2 due to in…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8505
|
2024-10-8 04:26 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311563
|
6.1 |
MEDIUM
Network
|
goldplugins
|
custom_banners
|
The Custom Banners plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 3…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8799
|
2024-10-8 04:22 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311564
|
8.8 |
HIGH
Network
|
plugingarden
|
wp_easy_gallery
|
The WP Easy Gallery – WordPress Gallery Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the ‘key’ parameter in all versions up to, and including, 4.8.5 due to insufficient e…
|
CWE-89
SQL Injection
|
CVE-2024-9018
|
2024-10-8 04:20 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311565
|
5.0 |
MEDIUM
Network
|
openstack
redhat
|
heat
openstack_platform
|
An incomplete fix for CVE-2023-1625 was found in openstack-heat. Sensitive information may possibly be disclosed through the OpenStack stack abandon command with the hidden feature set to True and th…
|
NVD-CWE-noinfo
|
CVE-2024-7319
|
2024-10-8 04:15 |
2024-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311566
|
5.4 |
MEDIUM
Network
|
librenms
|
librenms
|
LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Device Dependencies" feature allows authenticated users to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47527
|
2024-10-8 04:08 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311567
|
5.4 |
MEDIUM
Network
|
librenms
|
librenms
|
LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Rules" feature allows authenticated users to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47525
|
2024-10-8 04:08 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311568
|
5.4 |
MEDIUM
Network
|
librenms
|
librenms
|
LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Transports" feature allows authenticated users to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47523
|
2024-10-8 04:07 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311569
|
9.8 |
CRITICAL
Network
|
definetlynotai
|
logicytics
|
Logicytics is designed to harvest and collect data for forensic analysis. Logicytics has a basic vuln affecting compromised devices from shell injections. This vulnerability is fixed in 2.3.2.
|
CWE-78
OS Command
|
CVE-2024-47608
|
2024-10-8 03:51 |
2024-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311570
|
6.1 |
MEDIUM
Network
|
contempo
|
pdf_image_generator
|
The PDF Image Generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and includi…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9241
|
2024-10-8 03:51 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
