|
308861
|
6.1 |
MEDIUM
Network
|
honeywell
|
iq3xcite_firmware
|
A cross-site scripting (XSS) vulnerability in the component /test/ of iq3xcite v2.31 to v3.05 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
|
CWE-79
Cross-site Scripting
|
CVE-2024-46453
|
2024-10-7 22:53 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308862
|
6.1 |
MEDIUM
Network
|
filamentphp
|
filament
|
Filament is a collection of full-stack components for Laravel development. Versions of Filament from v3.0.0 through v3.2.114 are affected by a cross-site scripting (XSS) vulnerability. If values pass…
|
CWE-79
Cross-site Scripting
|
CVE-2024-47186
|
2024-10-7 22:30 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308863
|
7.5 |
HIGH
Network
|
netflix
|
e2nest
|
A path traversal issue in E2Nest prior to commit 8a41948e553c89c56b14410c6ed395e9cfb9250a
|
CWE-22
Path Traversal
|
CVE-2024-9301
|
2024-10-7 22:12 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308864
|
5.4 |
MEDIUM
Network
|
blockspare
|
blockspare
|
The Blockspare: Gutenberg Blocks & Patterns for Blogs, Magazines, Business Sites – Post Grids, Sliders, Carousels, Counters, Page Builder & Starter Site Imports, No Coding Needed plugin for WordPress…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8325
|
2024-10-7 21:37 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308865
|
7.5 |
HIGH
Network
|
pixelyoursite
|
pixelyoursite
|
The PixelYourSite – Your smart PIXEL (TAG) & API Manager and the PixelYourSite PRO plugins for WordPress are vulnerable to Sensitive Information Exposure in all versions up to, and including, 9.7.1 a…
|
CWE-287
Improper Authentication
|
CVE-2024-7870
|
2024-10-7 21:29 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308866
|
- |
|
-
|
-
|
In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed fo…
|
-
|
CVE-2024-20094
|
2024-10-7 13:15 |
2024-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308867
|
- |
|
-
|
-
|
In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction i…
|
-
|
CVE-2024-20103
|
2024-10-7 12:15 |
2024-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308868
|
- |
|
-
|
-
|
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is …
|
-
|
CVE-2024-20101
|
2024-10-7 12:15 |
2024-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308869
|
- |
|
-
|
-
|
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is …
|
-
|
CVE-2024-20100
|
2024-10-7 12:15 |
2024-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308870
|
- |
|
-
|
-
|
In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need…
|
-
|
CVE-2024-20099
|
2024-10-7 12:15 |
2024-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
