|
319691
|
9.8 |
CRITICAL
Network
|
oretnom23
|
food_ordering_management_system
|
A vulnerability was found in SourceCodester Food Ordering Management System 1.0. It has been classified as critical. This affects an unknown part of the file /routers/ticket-status.php. The manipulat…
|
CWE-89
SQL Injection
|
CVE-2024-8416
|
2024-09-7 01:38 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319692
|
6.2 |
MEDIUM
Local
|
huawei
|
emui
harmonyos
|
Permission verification vulnerability in the lock screen module
Impact: Successful exploitation of this vulnerability may affect availability
|
NVD-CWE-noinfo
|
CVE-2023-7265
|
2024-09-7 01:38 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319693
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
xen: privcmd: Switch from mutex to spinlock for irqfds
irqfd_wakeup() gets EPOLLHUP, when it is called by
eventfd_release() by wa…
|
CWE-667
Improper Locking
|
CVE-2024-44957
|
2024-09-7 01:37 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319694
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/preempt_fence: enlarge the fence critical section
It is really easy to introduce subtle deadlocks in
preempt_fence_work_fu…
|
CWE-667
Improper Locking
|
CVE-2024-44956
|
2024-09-7 01:37 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319695
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
idpf: fix memory leaks and crashes while performing a soft reset
The second tagged commit introduced a UAF, as it removed restori…
|
CWE-416
CWE-401
Use After Free
Missing Release of Memory after Effective Lifetime
|
CVE-2024-44964
|
2024-09-7 01:36 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319696
|
9.1 |
CRITICAL
Network
|
bitapps
|
bit_form
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Bit Apps Bit Form Pro allows File Manipulation.This issue affects Bit Form Pro: from n/a through 2.6.4.
|
CWE-22
Path Traversal
|
CVE-2024-43248
|
2024-09-7 01:32 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319697
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bonding: fix null pointer deref in bond_ipsec_offload_ok
We must check if there is an active slave before dereferencing the point…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-44990
|
2024-09-7 01:31 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319698
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bonding: fix xfrm real_dev null pointer dereference
We shouldn't set real_dev to NULL because packets can be in transit and
xfrm …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-44989
|
2024-09-7 01:31 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319699
|
5.9 |
MEDIUM
Network
|
dlink
|
dns-320_firmware
|
A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01. Affected by this issue is some unknown functionality of the file /cgi-bin/widget_api.cgi of the compone…
|
NVD-CWE-noinfo
|
CVE-2024-8460
|
2024-09-7 01:30 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319700
|
8.8 |
HIGH
Network
|
bitapps
|
bit_form
|
Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form Pro allows Command Injection.This issue affects Bit Form Pro: from n/a through 2.6.4.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-43249
|
2024-09-7 01:30 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
