|
309431
|
- |
|
-
|
-
|
A vulnerability classified as problematic was found in Langflow up to 1.0.18. Affected by this vulnerability is an unknown functionality of the file \src\backend\base\langflow\interface\utils.py of t…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2024-9277
|
2024-09-30 21:45 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309432
|
- |
|
-
|
-
|
A vulnerability classified as problematic has been found in TMsoft MyAuth Gateway 3. Affected is an unknown function of the file /index.php. The manipulation of the argument console/nocache/cmd leads…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9276
|
2024-09-30 21:45 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309433
|
- |
|
-
|
-
|
A vulnerability was found in jeanmarc77 123solar up to 1.8.4.5. It has been rated as critical. This issue affects some unknown processing of the file /admin/admin_invt2.php. The manipulation of the a…
|
CWE-73
External Control of File Name or Path
|
CVE-2024-9275
|
2024-09-30 21:45 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309434
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't BUG_ON() when 0 reference count at btrfs_lookup_extent_info()
Instead of doing a BUG_ON() handle the error by return…
|
NVD-CWE-Other
|
CVE-2024-46751
|
2024-09-30 21:45 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309435
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
spi: intel: Add check devm_kasprintf() returned value
intel_spi_populate_chip() use devm_kasprintf() to set pdata->name.
This can…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46769
|
2024-09-30 21:44 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309436
|
- |
|
-
|
-
|
A Local File Inclusion vulnerability exists in parisneo/lollms-webui versions below v9.8. The vulnerability is due to unverified path concatenation in the `serve_js` function in `app.py`, which allow…
|
CWE-29
Path Traversal: '\..\filename'
|
CVE-2024-6394
|
2024-09-30 17:15 |
2024-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309437
|
- |
|
-
|
-
|
Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password. If this vulnerability is exploited, an attacker with physical access to the device may re…
|
-
|
CVE-2024-42496
|
2024-09-30 17:15 |
2024-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309438
|
- |
|
-
|
-
|
Smart-tab Android app installed April 2023 or earlier contains an active debug code vulnerability. If this vulnerability is exploited, an attacker with physical access to the device may exploit the d…
|
-
|
CVE-2024-41999
|
2024-09-30 17:15 |
2024-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309439
|
- |
|
-
|
-
|
In Nintendo Mario Kart 8 Deluxe before 3.0.3, the LAN/LDN local multiplayer implementation allows a remote attacker to exploit a stack-based buffer overflow upon deserialization of session informatio…
|
-
|
CVE-2024-45200
|
2024-09-30 17:15 |
2024-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309440
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
powerpc/qspinlock: Fix deadlock in MCS queue
If an interrupt occurs in queued_spin_lock_slowpath() after we increment
qnodesp->co…
|
CWE-667
Improper Locking
|
CVE-2024-46797
|
2024-09-30 00:15 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
