|
314921
|
5.4 |
MEDIUM
Network
|
wpextended
|
wp_extended
|
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.0.8 via the duplicate_post function due…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-8123
|
2024-09-7 02:20 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314922
|
6.1 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could a…
|
CWE-79
Cross-site Scripting
|
CVE-2024-20488
|
2024-09-7 02:18 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314923
|
- |
|
-
|
-
|
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-45294. Reason: This candidate is a duplicate of CVE-2024-45294. Notes: All CVE users should reference CVE-2024-452…
|
-
|
CVE-2024-45295
|
2024-09-7 02:15 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314924
|
- |
|
-
|
-
|
The HL7 FHIR Core Artifacts repository provides the java core object handling code, with utilities (including validator), for the Fast Healthcare Interoperability Resources (FHIR) specification. Prio…
|
-
|
CVE-2024-45294
|
2024-09-7 02:15 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314925
|
9.8 |
CRITICAL
Network
|
mozilla
|
thunderbird
firefox_esr
firefox
|
Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-8387
|
2024-09-7 02:15 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314926
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox
firefox_esr
|
A difference in the handling of StructFields and ArrayTypes in WASM could be used to trigger an exploitable type confusion vulnerability. This vulnerability affects Firefox < 130, Firefox ESR < 128.2…
|
CWE-843
Type Confusion
|
CVE-2024-8385
|
2024-09-7 02:15 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314927
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox_esr
firefox
|
The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulner…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-8384
|
2024-09-7 02:15 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314928
|
9.8 |
CRITICAL
Network
|
mozilla
|
firefox_esr
firefox
|
A potentially exploitable type confusion could be triggered when looking up a property name on an object being used as the `with` environment. This vulnerability affects Firefox < 130, Firefox ESR < …
|
CWE-843
Type Confusion
|
CVE-2024-8381
|
2024-09-7 02:15 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314929
|
10.0 |
CRITICAL
Network
|
wpindeed
|
ultimate_membership_pro
|
Deserialization of Untrusted Data vulnerability in azzaroco Ultimate Membership Pro allows Object Injection.This issue affects Ultimate Membership Pro: from n/a through 12.6.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2024-43242
|
2024-09-7 01:57 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314930
|
7.5 |
HIGH
Network
|
raidenmaild
|
raidenmaild
|
Raiden MAILD Remote Management System from Team Johnlong Software has a Relative Path Traversal vulnerability, allowing unauthenticated remote attackers to read arbitrary file on the remote server.
|
CWE-22
Path Traversal
|
CVE-2024-7693
|
2024-09-7 01:51 |
2024-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
