|
256131
|
6.1 |
MEDIUM
Network
|
microfocus
|
netiq_self_service_password_reset
|
Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site Scripting (XSS). This issue affects Self Service Password Reset before 4.5.0.2 and 4.4.0.6
|
CWE-79
Cross-site Scripting
|
CVE-2020-11850
|
2024-08-24 02:02 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256132
|
7.5 |
HIGH
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, which causes the web int…
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2024-6329
|
2024-08-24 02:01 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256133
|
5.4 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab EE starting from version 16.7 before 17.0.6, version 17.1 before 17.1.4 and 17.2 before 17.2.2 that allowed bypassing the password re-entry requirement to approve a …
|
CWE-287
Improper Authentication
|
CVE-2024-4784
|
2024-08-24 01:59 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256134
|
7.5 |
HIGH
Network
|
dell
|
insightiq
|
Dell InsightIQ, Verion 5.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to in…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-28972
|
2024-08-24 01:59 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256135
|
7.8 |
HIGH
Local
|
autodesk
|
revit
|
A maliciously crafted DWG file, when parsed in Revit, can force a stack-based buffer overflow. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the curren…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-37008
|
2024-08-24 01:57 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256136
|
7.8 |
HIGH
Local
|
dell
|
repository_manager
|
Dell Repository Manager version 3.4.2 and earlier, contain a Local Privilege Escalation Vulnerability in Installation module. A local low privileged attacker may potentially exploit this vulnerabilit…
|
NVD-CWE-noinfo
|
CVE-2023-22576
|
2024-08-24 01:56 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256137
|
6.5 |
MEDIUM
Network
|
gitlab
|
gitlab
|
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions starting with 12.6 before 17.0.6, 17.1 prior to 17.1.4, and 17.2 prior to 17.2.2. It is possible for an …
|
NVD-CWE-noinfo
|
CVE-2024-4210
|
2024-08-24 01:56 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256138
|
8.0 |
HIGH
Adjacent
|
magnetforensics
|
axiom
|
Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Magnet Forens…
|
CWE-78
OS Command
|
CVE-2024-7448
|
2024-08-24 01:54 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256139
|
7.8 |
HIGH
Local
|
windscribe
|
windscribe
|
Windscribe Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Windscribe. An attacker must fir…
|
CWE-22
Path Traversal
|
CVE-2024-6141
|
2024-08-24 01:53 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256140
|
5.3 |
MEDIUM
Network
|
tvt
provision-isr
artion-sec
|
dvr_firmware
|
A vulnerability has been found in TVT DVR TD-2104TS-CL, DVR TD-2108TS-HP, Provision-ISR DVR SH-4050A5-5L(MM) and AVISION DVR AV108T and classified as problematic. This vulnerability affects unknown c…
|
NVD-CWE-noinfo
|
CVE-2024-7339
|
2024-08-24 01:53 |
2024-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
