|
250361
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpftool: Fix undefined behavior in qsort(NULL, 0, ...)
When netfilter has no entry to display, qsort is called with
qsort(NULL, 0…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49987
|
2024-10-29 01:23 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250362
|
8.8 |
HIGH
Network
|
tenda
|
ac8_firmware
|
A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability affects the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the …
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2024-10130
|
2024-10-29 01:08 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250363
|
8.8 |
HIGH
Network
|
tenda
|
ac8_firmware
|
A vulnerability was found in Tenda AC8 16.03.34.06. It has been declared as critical. Affected by this vulnerability is the function compare_parentcontrol_time of the file /goform/saveParentControlIn…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2024-10123
|
2024-10-29 01:06 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250364
|
9.8 |
CRITICAL
Network
|
clothes_recommendation_system_project
|
clothes_recommendation_system
|
A vulnerability was found in SourceCodeHero Clothes Recommendation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/index.php of the component …
|
CWE-89
SQL Injection
|
CVE-2024-10336
|
2024-10-29 01:01 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250365
|
9.8 |
CRITICAL
Network
|
sadat
|
garbage_collection_management_system
|
A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation…
|
CWE-89
SQL Injection
|
CVE-2024-10335
|
2024-10-29 00:58 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250366
|
6.1 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in HTTP 400 Bad Request. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46995
|
2024-10-29 00:33 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250367
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Edit Email Form Settings Feature. Version 5.1.2 fixes the issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46998
|
2024-10-29 00:32 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250368
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Blog posts feature. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46996
|
2024-10-29 00:31 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250369
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in Blog posts and Contents list Feature. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46994
|
2024-10-29 00:30 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250370
|
6.1 |
MEDIUM
Network
|
openrefine
|
openrefine
|
OpenRefine is a free, open source tool for working with messy data. Prior to version 3.8.3, the built-in "Something went wrong!" error page includes the exception message and exception traceback with…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47882
|
2024-10-28 23:26 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
