|
309241
|
8.8 |
HIGH
Local
|
rust-lang
|
rust
|
Rust is a programming language. The fix for CVE-2024-24576, where `std::process::Command` incorrectly escaped arguments when invoking batch files on Windows, was incomplete. Prior to Rust version 1.8…
|
CWE-88
Argument Injection
|
CVE-2024-43402
|
2024-10-2 00:12 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309242
|
6.1 |
MEDIUM
Network
|
objectiv
|
simple_ldap_login
|
The Simple LDAP Login plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8715
|
2024-10-1 23:37 |
2024-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309243
|
7.5 |
HIGH
Network
|
huawei
|
harmonyos
emui
|
Access permission verification vulnerability in the App Multiplier module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2024-9136
|
2024-10-1 23:28 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309244
|
7.5 |
HIGH
Network
|
huawei
|
emui
harmonyos
|
Access permission verification vulnerability in the input method framework module
Impact: Successful exploitation of this vulnerability may affect availability.
|
NVD-CWE-noinfo
|
CVE-2024-47294
|
2024-10-1 23:27 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309245
|
7.5 |
HIGH
Network
|
huawei
|
harmonyos
emui
|
Out-of-bounds write vulnerability in the HAL-WIFI module
Impact: Successful exploitation of this vulnerability may affect availability.
|
CWE-787
Out-of-bounds Write
|
CVE-2024-47293
|
2024-10-1 23:25 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309246
|
5.5 |
MEDIUM
Local
|
huawei
|
emui
harmonyos
|
Path traversal vulnerability in the Bluetooth module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
CWE-22
Path Traversal
|
CVE-2024-47292
|
2024-10-1 23:23 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309247
|
5.5 |
MEDIUM
Local
|
huawei
|
emui
harmonyos
|
Permission vulnerability in the ActivityManagerService (AMS) module
Impact: Successful exploitation of this vulnerability may affect availability.
|
NVD-CWE-noinfo
|
CVE-2024-47291
|
2024-10-1 23:19 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309248
|
5.5 |
MEDIUM
Local
|
huawei
|
emui
harmonyos
|
Input validation vulnerability in the USB service module
Impact: Successful exploitation of this vulnerability may affect availability.
|
NVD-CWE-noinfo
|
CVE-2024-47290
|
2024-10-1 23:19 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309249
|
4.8 |
MEDIUM
Network
|
10web
|
form_maker
|
The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.15.27 due to insuf…
|
CWE-79
Cross-site Scripting
|
CVE-2024-8633
|
2024-10-1 23:17 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309250
|
5.4 |
MEDIUM
Network
|
advancedfilemanager
|
advanced_file_manager
|
Multiple plugins and/or themes for WordPress are vulnerable to Limited File Upload in various versions. This is due to a lack of proper checks to ensure lower-privileged roles cannot upload .css and …
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8725
|
2024-10-1 23:16 |
2024-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
