|
312251
|
- |
|
-
|
-
|
Versions of the package sinatra from 0.0.0 are vulnerable to Reliance on Untrusted Inputs in a Security Decision via the X-Forwarded-Host (XFH) header. When making a request to a method with redirect…
|
-
|
CVE-2024-21510
|
2024-11-1 14:15 |
2024-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312252
|
- |
|
-
|
-
|
A vulnerability was found in knightliao Disconf 2.6.36. It has been classified as critical. This affects an unknown part of the file /api/config/list of the component Configuration Center. The manipu…
|
-
|
CVE-2024-10620
|
2024-11-1 14:15 |
2024-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312253
|
- |
|
-
|
-
|
OpenIPMI before 2.0.36 has an out-of-bounds array access (for authentication type) in the ipmi_sim simulator, resulting in denial of service or (with very low probability) authentication bypass or co…
|
-
|
CVE-2024-42934
|
2024-11-1 05:35 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312254
|
- |
|
-
|
-
|
No-IP Dynamic Update Client (DUC) v3.x uses cleartext credentials that may occur on a command line or in a file. NOTE: the vendor's position is that cleartext in /etc/default/noip-duc is recommended …
|
-
|
CVE-2024-40457
|
2024-11-1 05:15 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312255
|
5.4 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) …
|
CWE-79
Cross-site Scripting
|
CVE-2024-20364
|
2024-11-1 04:36 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312256
|
- |
|
-
|
-
|
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Data is sent between client and server with encryption. However, the key is derived from the string "(c)2007 UCI Software Gm…
|
-
|
CVE-2024-45165
|
2024-11-1 04:35 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312257
|
5.4 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack …
|
CWE-79
Cross-site Scripting
|
CVE-2024-20269
|
2024-11-1 04:35 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312258
|
5.4 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack …
|
CWE-79
Cross-site Scripting
|
CVE-2024-20298
|
2024-11-1 04:25 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312259
|
6.1 |
MEDIUM
Network
|
cisco
|
firepower_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac…
|
CWE-79
Cross-site Scripting
|
CVE-2024-20415
|
2024-11-1 04:17 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312260
|
6.1 |
MEDIUM
Network
|
cisco
|
secure_firewall_management_center
|
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac…
|
CWE-79
Cross-site Scripting
|
CVE-2024-20273
|
2024-11-1 04:09 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
