|
249651
|
9.8 |
CRITICAL
Network
|
fortinet
|
fortimanager_cloud
fortimanager
|
A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through 7.4.4, FortiManager 7.2.0 through 7.2.7, FortiManager 7.0.0 through 7.0.12, FortiManager 6.4.0 through…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2024-47575
|
2024-11-9 06:16 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249652
|
9.8 |
CRITICAL
Network
|
websiteinwp
|
blogpoet
|
Missing Authorization vulnerability in WebsiteinWP Blogpoet allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blogpoet: from n/a through 1.0.3.
|
CWE-862
Missing Authorization
|
CVE-2024-43998
|
2024-11-9 06:11 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249653
|
8.8 |
HIGH
Network
|
geekcodelab
|
login_as_users
|
Missing Authorization vulnerability in Geek Code Lab Login As Users allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Login As Users: from n/a through 1.4.3.
|
CWE-862
Missing Authorization
|
CVE-2024-43982
|
2024-11-9 06:11 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249654
|
8.8 |
HIGH
Network
|
ayecode
|
geodirectory
|
Missing Authorization vulnerability in AyeCode – WP Business Directory Plugins GeoDirectory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GeoDirectory: fr…
|
CWE-862
Missing Authorization
|
CVE-2024-43981
|
2024-11-9 06:10 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249655
|
8.8 |
HIGH
Network
|
combodo
|
itop
|
Combodo iTop is a simple, web based IT Service Management tool. This vulnerability can be used to create HTTP requests on behalf of the server, from a low privileged user. The user portal form manage…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-51740
|
2024-11-9 06:09 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249656
|
8.8 |
HIGH
Network
|
onthegosystems
|
woocommerce_multilingual_\&_multicurrency
|
Missing Authorization vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency multilingual allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects …
|
CWE-862
Missing Authorization
|
CVE-2024-44006
|
2024-11-9 06:08 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249657
|
9.8 |
CRITICAL
Network
|
didi
|
super-jacoco
|
A vulnerability has been found in didi Super-Jacoco 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /cov/triggerUnitCover. The manipulation of t…
|
CWE-78
OS Command
|
CVE-2024-10919
|
2024-11-9 06:07 |
2024-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249658
|
9.8 |
CRITICAL
Network
|
renzojohnson
|
contact_form_7_campaign_monitor_extension
|
Missing Authorization vulnerability in Renzo Johnson Contact Form 7 Campaign Monitor Extension allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Contact Form 7 Campai…
|
CWE-862
Missing Authorization
|
CVE-2024-44019
|
2024-11-9 06:06 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249659
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
xfrm: fix one more kernel-infoleak in algo dumping
During fuzz testing, the following issue was discovered:
BUG: KMSAN: kernel-i…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-50110
|
2024-11-9 06:05 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249660
|
8.8 |
HIGH
Network
|
prasadkirpekar
|
wp_free_ssl
|
Missing Authorization vulnerability in Prasad Kirpekar WP Free SSL – Free SSL Certificate for WordPress and force HTTPS allows .
This issue affects WP Free SSL – Free SSL Certificate for WordPress a…
|
CWE-862
Missing Authorization
|
CVE-2024-44020
|
2024-11-9 06:02 |
2024-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
