|
303911
|
7.8 |
HIGH
Local
|
microsoft
|
office
365_apps
office_long_term_servicing_channel
|
Microsoft Office Graphics Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-49032
|
2024-11-19 05:31 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303912
|
7.8 |
HIGH
Local
|
microsoft
|
office
365_apps
office_long_term_servicing_channel
|
Microsoft Office Graphics Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-49031
|
2024-11-19 05:31 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303913
|
4.8 |
MEDIUM
Network
|
mayurik
|
hospital_management_system
|
A vulnerability was found in SourceCodester Hospital Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /vm/doctor/edit-doc.php.…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11102
|
2024-11-19 05:00 |
2024-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303914
|
7.8 |
HIGH
Local
|
dell
|
smartfabric_os10
|
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could…
|
NVD-CWE-noinfo
|
CVE-2024-48837
|
2024-11-19 04:48 |
2024-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303915
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
RDMA/bnxt_re: Add a check for memory allocation
__alloc_pbl() can return error when memory allocation fails.
Driver is not checki…
|
NVD-CWE-noinfo
|
CVE-2024-50209
|
2024-11-19 04:44 |
2024-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303916
|
- |
|
-
|
-
|
SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery (CSRF) via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add…
|
-
|
CVE-2021-27701
|
2024-11-19 04:35 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303917
|
- |
|
-
|
-
|
SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify us…
|
-
|
CVE-2021-27700
|
2024-11-19 04:35 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303918
|
8.8 |
HIGH
Network
|
microsoft
|
sql_server_2016
sql_server_2017
sql_server_2019
|
SQL Server Native Client Remote Code Execution Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-38255
|
2024-11-19 04:35 |
2024-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303919
|
- |
|
-
|
-
|
In Advanced Custom Fields (ACF) before 6.3.9 and Secure Custom Fields before 6.3.6.3 (plugins for WordPress), using the Field Group editor to edit one of the plugin's fields can result in execution o…
|
-
|
CVE-2024-49593
|
2024-11-19 04:35 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303920
|
8.8 |
HIGH
Network
|
isellerpal
|
enterprise_resource_management_system
|
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPost…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-42676
|
2024-11-19 04:15 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
