|
251131
|
4.9 |
MEDIUM
Network
|
topdata
|
inner_rep_plus
|
A vulnerability was found in Topdata Inner Rep Plus WebServer 2.01. It has been rated as problematic. Affected by this issue is some unknown functionality of the file td.js.gz. The manipulation leads…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-10128
|
2024-10-31 05:31 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251132
|
6.1 |
MEDIUM
Network
|
sunburntkamel
|
disconnected
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in sunburntkamel disconnected allows Reflected XSS.This issue affects disconnected: from n/a …
|
CWE-79
Cross-site Scripting
|
CVE-2024-49268
|
2024-10-31 05:30 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251133
|
5.4 |
MEDIUM
Network
|
booking
|
banner_creator
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Partnerships at Booking.Com Booking.Com Banner Creator allows Stored XSS.This issue affect…
|
CWE-79
Cross-site Scripting
|
CVE-2024-49265
|
2024-10-31 05:29 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251134
|
9.8 |
CRITICAL
Network
|
riskengine
|
radar
|
A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argume…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-10120
|
2024-10-31 05:20 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251135
|
7.8 |
HIGH
Local
|
lakesidesoftware
|
systrack_lsiagent
|
Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows contains a local privilege escalation vulnerability which allows attackers SYSTEM level access.
|
NVD-CWE-Other
|
CVE-2023-6080
|
2024-10-31 05:12 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251136
|
- |
|
-
|
-
|
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious application may be able to modify protected parts of the file system.
|
-
|
CVE-2024-44301
|
2024-10-31 04:35 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251137
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious application may be able to modify protected parts of the file system.
|
NVD-CWE-noinfo
|
CVE-2024-44287
|
2024-10-31 04:35 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251138
|
2.4 |
LOW
Physics
|
apple
|
macos
|
The issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An attacker with physical access can input Game Controller…
|
NVD-CWE-noinfo
|
CVE-2024-44265
|
2024-10-31 04:35 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251139
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to modify protected parts of the file system.
|
NVD-CWE-noinfo
|
CVE-2024-44253
|
2024-10-31 04:35 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251140
|
7.5 |
HIGH
Network
|
apple
|
macos
|
This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15. An app may be able to bypass certain Privacy preferences.
|
NVD-CWE-noinfo
|
CVE-2024-44208
|
2024-10-31 04:35 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
