|
310041
|
- |
|
-
|
-
|
A vulnerability was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM 1.3.8. It has been declared as critical. Affected by this vulnerability is the function uploadFile of the file /admin/SysModule/upload/aj…
|
-
|
CVE-2024-9855
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310042
|
7.5 |
HIGH
Network
|
-
|
-
|
An Uncontrolled Resource Consumption vulnerability in the http daemon (httpd) of Juniper Networks Junos OS on SRX Series, QFX Series, MX Series and EX Series allows an unauthenticated, network-based …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2024-47497
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310043
|
5.5 |
MEDIUM
Local
|
-
|
-
|
A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS allows a local, low-privileged attacker to cause a Denial-of-Service (DoS).
When a specifi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47496
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310044
|
5.9 |
MEDIUM
Network
|
-
|
-
|
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in the AgentD process of Juniper Networks Junos OS allows an attacker who is already causing impact to established sessions which gen…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2024-47494
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310045
|
8.2 |
HIGH
Network
|
-
|
-
|
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenti…
|
CWE-923
Improper Restriction of Communication Channel to Intended Endpoints
|
CVE-2024-47490
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310046
|
7.5 |
HIGH
Network
|
-
|
-
|
An Improper Handling of Exceptional Conditions vulnerability in the rpd-server of Juniper Networks Junos OS and Junos OS Evolved within cRPD allows an unauthenticated network-based attacker sending c…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2024-39547
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310047
|
6.1 |
MEDIUM
Network
|
-
|
-
|
The BlockMeister – Block Pattern Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions u…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9616
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310048
|
6.1 |
MEDIUM
Network
|
-
|
-
|
The Increase upload file size & Maximum Execution Time limit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the U…
|
-
|
CVE-2024-9611
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310049
|
6.1 |
MEDIUM
Network
|
-
|
-
|
The Language Switcher plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9610
|
2024-10-15 21:58 |
2024-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310050
|
5.0 |
MEDIUM
Local
|
-
|
-
|
An Incorrect Default Permissions vulnerability in the command line interface (CLI) of Juniper Networks Junos OS Evolved allows a low privileged local attacker to view NETCONF traceoptions files, repr…
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-39544
|
2024-10-15 21:58 |
2024-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
