|
317671
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In DRM service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-39439
|
2024-10-18 02:32 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317672
|
8.1 |
HIGH
Network
|
paytium
|
paytium
|
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the create_mollie_account function in versio…
|
CWE-862
Missing Authorization
|
CVE-2023-7291
|
2024-10-18 02:31 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317673
|
4.3 |
MEDIUM
Network
|
paytium
|
paytium
|
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the check_for_verified_profiles function in versio…
|
CWE-862
Missing Authorization
|
CVE-2023-7290
|
2024-10-18 02:30 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317674
|
4.3 |
MEDIUM
Network
|
paytium
|
paytium
|
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized API key update due to a missing capability check on the paytium_sw_save_api_keys function in versions …
|
CWE-862
Missing Authorization
|
CVE-2023-7289
|
2024-10-18 02:29 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317675
|
5.4 |
MEDIUM
Network
|
paytium
|
paytium
|
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized subscription cancellation due to a missing capability check on the pt_cancel_subscription function in …
|
CWE-862
Missing Authorization
|
CVE-2023-7287
|
2024-10-18 02:28 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317676
|
4.3 |
MEDIUM
Network
|
paytium
|
paytium
|
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the update_profile_preference function in versi…
|
CWE-862
Missing Authorization
|
CVE-2023-7288
|
2024-10-18 02:27 |
2024-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317677
|
6.8 |
MEDIUM
Physics
|
microsoft
|
windows_server_2022_23h2
windows_10_1809
windows_server_2019
windows_11_21h2
windows_10_21h2
windows_11_22h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
|
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43543
|
2024-10-18 02:23 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317678
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
|
CWE-77
Command Injection
|
CVE-2024-39438
|
2024-10-18 02:19 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317679
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
|
CWE-77
Command Injection
|
CVE-2024-39437
|
2024-10-18 02:18 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317680
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
|
CWE-77
Command Injection
|
CVE-2024-39436
|
2024-10-18 02:16 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
