|
312201
|
5.3 |
MEDIUM
Network
|
felixmoira
|
limit_login_attempts_plus
|
The Limit Login Attempts Plus plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.1.0. This is due to insufficient restrictions on where the IP Address infor…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2022-4533
|
2024-09-26 03:53 |
2024-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312202
|
6.1 |
MEDIUM
Network
|
ibericode
|
mailchimp
|
The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'email' parameter when a placeholder such as {email} is used for the field in versions …
|
CWE-79
Cross-site Scripting
|
CVE-2024-8850
|
2024-09-26 03:49 |
2024-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312203
|
8.8 |
HIGH
Network
|
jeanmarc77
|
123solar
|
A vulnerability was found in jeanmarc77 123solar 1.8.4.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file config/config_invt1.php. The manipulation of …
|
CWE-94
Code Injection
|
CVE-2024-9006
|
2024-09-26 03:44 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312204
|
5.4 |
MEDIUM
Network
|
jeanmarc77
|
123solar
|
A vulnerability classified as problematic has been found in jeanmarc77 123solar 1.8.4.5. This affects an unknown part of the file /detailed.php. The manipulation of the argument date1 leads to cross …
|
CWE-79
Cross-site Scripting
|
CVE-2024-9007
|
2024-09-26 03:40 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312205
|
5.3 |
MEDIUM
Network
|
overleaf
|
overleaf
|
Overleaf is a web-based collaborative LaTeX editor. Overleaf Community Edition and Server Pro prior to version 5.0.7 (or 4.2.7 for the 4.x series) contain a vulnerability that allows an arbitrary lan…
|
CWE-74
Injection
|
CVE-2024-45312
|
2024-09-26 03:37 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312206
|
6.0 |
MEDIUM
Network
|
fortinet
|
forticlient_endpoint_management_server
|
A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiClientEMS versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.13, 6.4.0 through 6.4.9, 6.2.0 through 6.2.…
|
CWE-22
Path Traversal
|
CVE-2024-21753
|
2024-09-26 03:36 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312207
|
5.4 |
MEDIUM
Network
|
overleaf
|
overleaf
|
Overleaf is a web-based collaborative LaTeX editor. When installing Server Pro using the Overleaf Toolkit from before 2024-07-17 or legacy docker-compose.yml from before 2024-08-28, the configuration…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2024-45313
|
2024-09-26 03:12 |
2024-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312208
|
6.5 |
MEDIUM
Network
|
opendaylight
|
model-driven_service_abstraction_layer
|
In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment.
|
NVD-CWE-noinfo
|
CVE-2024-46942
|
2024-09-26 03:08 |
2024-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312209
|
5.4 |
MEDIUM
Network
|
workdo
|
crmgo_saas
|
A vulnerability classified as problematic was found in CodeCanyon CRMGo SaaS 7.2. This vulnerability affects unknown code of the file /deal/{note_id}/note. The manipulation of the argument notes lead…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9030
|
2024-09-26 03:01 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312210
|
9.8 |
CRITICAL
Network
|
cellopoint
|
secure_email_gateway
|
Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing aut…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-9043
|
2024-09-26 02:54 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
