|
307121
|
- |
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software, formerly Firepower Management Center Software, could allow an authenticated, remote at…
|
-
|
CVE-2024-20274
|
2024-10-25 21:56 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307122
|
- |
|
-
|
-
|
A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authentic…
|
-
|
CVE-2024-20268
|
2024-10-25 21:56 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307123
|
- |
|
-
|
-
|
A vulnerability in the VPN and management web servers of the Cisco Adaptive Security Virtual Appliance (ASAv) and Cisco Secure Firewall Threat Defense Virtual (FTDv), formerly Cisco Firepower Threat …
|
-
|
CVE-2024-20260
|
2024-10-25 21:56 |
2024-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307124
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
cachefiles: fix dentry leak in cachefiles_open_file()
A dentry leak may be caused when a lookup cookie and a cull are concurrent:…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-49870
|
2024-10-25 21:55 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307125
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Beek Widget Extention plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 0.9.5 due to insufficient input sanitization and output es…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10343
|
2024-10-25 18:15 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307126
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Simple News plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'news' shortcode in all versions up to, and including, 2.8 due to insufficient input sanitization an…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10112
|
2024-10-25 18:15 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307127
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The File Upload Types by WPForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.4.0 due to insufficient input sanitizat…
|
CWE-79
Cross-site Scripting
|
CVE-2024-10016
|
2024-10-25 18:15 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307128
|
8.8 |
HIGH
Network
|
-
|
-
|
The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.99.1. This is due to missing or incorrect nonce va…
|
CWE-352
Origin Validation Error
|
CVE-2024-9598
|
2024-10-25 17:15 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307129
|
- |
|
-
|
-
|
Whale browser Installer before 3.1.0.0 allows an attacker to execute a malicious DLL in the user environment due to improper permission settings.
|
-
|
CVE-2024-50583
|
2024-10-25 16:15 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307130
|
- |
|
-
|
-
|
Insufficient access checks in Visual Planning Admin Center 8 before v.1 Build 240207 allow attackers in possession of a non-administrative Visual Planning account to utilize functions normally reserv…
|
-
|
CVE-2023-49233
|
2024-10-25 05:35 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
