|
312281
|
9.8 |
CRITICAL
Network
|
upkeeper
|
upkeeper_manager
|
Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9.
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2024-42465
|
2024-08-29 05:32 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312282
|
7.2 |
HIGH
Network
|
versa-networks
|
versa_director
|
The Versa Director GUI provides an option to customize the look and feel of the user interface. This option is only available for a user logged with Provider-Data-Center-Admin or Provider-Data-Center…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-39717
|
2024-08-29 04:47 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312283
|
- |
|
-
|
-
|
A vulnerability in Pantera CRM versions 401.152 and 402.072 allows unauthorized attackers to bypass IP-based access controls by manipulating the X-Forwarded-For header.
|
-
|
CVE-2024-40530
|
2024-08-29 04:15 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312284
|
8.3 |
HIGH
Network
|
microsoft
|
edge_chromium
|
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43472
|
2024-08-29 04:13 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312285
|
5.3 |
MEDIUM
Network
|
softlabbd
|
radio_player
|
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_player function in versions up to, and including, 2.0.73. This…
|
CWE-862
Missing Authorization
|
CVE-2023-4024
|
2024-08-29 03:32 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312286
|
5.3 |
MEDIUM
Network
|
softlabbd
|
radio_player
|
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the update_player function in versions up to, and including, 2.0.73. This…
|
CWE-862
Missing Authorization
|
CVE-2023-4025
|
2024-08-29 03:30 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312287
|
9.8 |
CRITICAL
Network
|
alientechnology
|
alr-f800_firmware
|
A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been classified as critical. Affected is an unknown function of the file /var/www/cmd.php. The manipulation of the arg…
|
CWE-285
Improper Authorization
|
CVE-2024-7578
|
2024-08-29 03:27 |
2024-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312288
|
8.8 |
HIGH
Network
|
alientechnology
|
alr-f800_firmware
|
A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been declared as critical. Affected by this vulnerability is the function popen of the file /var/www/cgi-bin/upgrade.c…
|
CWE-78
OS Command
|
CVE-2024-7579
|
2024-08-29 03:26 |
2024-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312289
|
7.8 |
HIGH
Local
|
okta
|
verify
|
Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The vulnerability is fixed in Okta Verify for Windows version 5.0.2. To remediate this vulnerability, upgrade to 5…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-7061
|
2024-08-29 03:25 |
2024-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312290
|
5.4 |
MEDIUM
Network
|
opentext
|
alm_octane
|
Improper Neutralization vulnerability (XSS) has been discovered in OpenText™ ALM Octane. The vulnerability affects all version prior to version 23.4. The vulnerability could cause remote code executi…
|
CWE-79
Cross-site Scripting
|
CVE-2024-6361
|
2024-08-29 03:17 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
