|
307281
|
- |
|
-
|
-
|
The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if
the patch files are signed before executing the containing run.sh
sc…
|
-
|
CVE-2024-47943
|
2024-10-15 18:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307282
|
9.8 |
CRITICAL
Network
|
-
|
-
|
AIM LINE Marketing Platform from Esi Technology does not properly validate a specific query parameter. When the LINE Campaign Module is enabled, unauthenticated remote attackers can inject arbitrary …
|
CWE-89
SQL Injection
|
CVE-2024-9982
|
2024-10-15 17:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307283
|
7.3 |
HIGH
Network
|
-
|
-
|
The The AADMY – Add Auto Date Month Year Into Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.1. This is due to the software allowi…
|
CWE-94
Code Injection
|
CVE-2024-9837
|
2024-10-15 17:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307284
|
- |
|
-
|
-
|
Rejected reason: Unable to reproduce.
|
-
|
CVE-2024-1342
|
2024-10-15 07:15 |
2024-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307285
|
- |
|
-
|
-
|
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-9823. Reason: This candidate is a reservation duplicate of CVE-2024-9823. Notes: All CVE users should reference CV…
|
-
|
CVE-2023-45817
|
2024-10-15 03:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307286
|
- |
|
-
|
-
|
External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls.Thi…
|
CWE-73
CWE-732
External Control of File Name or Path
Incorrect Permission Assignment for Critical Resource
|
CVE-2024-9142
|
2024-10-15 01:35 |
2024-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307287
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-48251. Reason: This candidate is a reservation duplicate of CVE-2024-48251. Notes: All CVE users should reference CVE-2024-4825…
|
-
|
CVE-2024-48261
|
2024-10-15 00:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307288
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
|
-
|
CVE-2024-40616
|
2024-10-15 00:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307289
|
6.5 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in Privilege escalation. A low-privileged attacke…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45132
|
2024-10-14 20:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307290
|
5.4 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged at…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45131
|
2024-10-14 20:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
