|
252161
|
6.1 |
MEDIUM
Network
|
michaeluno
|
auto_amazon_links
|
The Auto Amazon Links – Amazon Associates Affiliate Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9349
|
2024-10-11 05:25 |
2024-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252162
|
9.8 |
CRITICAL
Network
|
dlink
|
dir-860l_firmware
|
In D-Link DIR-860L v2.03, there is a buffer overflow vulnerability due to the lack of length verification for the SID field in gena.cgi. Attackers who successfully exploit this vulnerability can caus…
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-42812
|
2024-10-11 05:18 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252163
|
6.1 |
MEDIUM
Network
|
angeljudesuarez
|
placement_management_system
|
itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46300
|
2024-10-11 03:52 |
2024-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252164
|
4.9 |
MEDIUM
Network
|
google
|
android
|
In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is …
|
CWE-125
Out-of-bounds Read
|
CVE-2024-20102
|
2024-10-11 03:20 |
2024-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252165
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ALSA: line6: Fix racy access to midibuf
There can be concurrent accesses to line6 midibuf from both the URB
completion callback a…
|
CWE-362
Race Condition
|
CVE-2024-44954
|
2024-10-11 03:02 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252166
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Don't refer to dc_sink in is_dsc_need_re_compute
[Why]
When unplug one of monitors connected after mst hub, enco…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-44955
|
2024-10-11 02:57 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252167
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
sched/smt: Fix unbalance sched_smt_present dec/inc
I got the following warn report while doing stress test:
jump label: negative…
|
NVD-CWE-noinfo
|
CVE-2024-44958
|
2024-10-11 02:56 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252168
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tracefs: Use generic inode RCU for synchronizing freeing
With structure layout randomization enabled for 'struct inode' we need t…
|
NVD-CWE-noinfo
|
CVE-2024-44959
|
2024-10-11 02:54 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252169
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ata: pata_macio: Fix DMA table overflow
Kolbjørn and Jonáš reported that their 32-bit PowerMacs were crashing
in pata-macio since…
|
NVD-CWE-noinfo
|
CVE-2024-44976
|
2024-10-11 02:50 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252170
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe: Fix missing workqueue destroy in xe_gt_pagefault
On driver reload we never free up the memory for the pagefault and
acces…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-44979
|
2024-10-11 02:44 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
