|
305711
|
6.1 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in HTTP 400 Bad Request. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46995
|
2024-10-29 00:33 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305712
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Edit Email Form Settings Feature. Version 5.1.2 fixes the issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46998
|
2024-10-29 00:32 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305713
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in the Blog posts feature. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46996
|
2024-10-29 00:31 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305714
|
5.4 |
MEDIUM
Network
|
basercms
|
basercms
|
baserCMS is a website development framework. Versions prior to 5.1.2 have a cross-site scripting vulnerability in Blog posts and Contents list Feature. Version 5.1.2 fixes this issue.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46994
|
2024-10-29 00:30 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305715
|
6.1 |
MEDIUM
Network
|
openrefine
|
openrefine
|
OpenRefine is a free, open source tool for working with messy data. Prior to version 3.8.3, the built-in "Something went wrong!" error page includes the exception message and exception traceback with…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47882
|
2024-10-28 23:26 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305716
|
8.8 |
HIGH
Network
|
openrefine
|
openrefine
|
OpenRefine is a free, open source tool for working with messy data. Starting in version 3.4-beta and prior to version 3.8.3, in the `database` extension, the "enable_load_extension" property can be s…
|
CWE-89
SQL Injection
|
CVE-2024-47881
|
2024-10-28 23:14 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305717
|
7.5 |
HIGH
Network
|
google
|
android
|
there is a possible Null Pointer Dereference (modem crash) due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interacti…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-44101
|
2024-10-28 22:59 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305718
|
- |
|
-
|
-
|
Validate.js provides a declarative way of validating javascript objects. All versions as of 30 November 2020 contain one or more regular expressions that are vulnerable to Regular Expression Denial o…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2020-26310
|
2024-10-28 22:58 |
2024-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305719
|
- |
|
-
|
-
|
Validate.js provides a declarative way of validating javascript objects. Versions 0.11.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service …
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2020-26309
|
2024-10-28 22:58 |
2024-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305720
|
- |
|
-
|
-
|
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service …
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2020-26308
|
2024-10-28 22:58 |
2024-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
