|
309831
|
9.8 |
CRITICAL
Network
|
closed-loop
|
cless_server
|
An arbitrary file upload vulnerability in the Media Manager function of Closed-Loop Technology CLESS Server v4.5.2 allows attackers to execute arbitrary code via uploading a crafted PHP file to the u…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-40125
|
2024-09-25 23:46 |
2024-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309832
|
6.1 |
MEDIUM
Network
|
surecart
|
surecart
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SureCart allows Reflected XSS.This issue affects SureCart: from n/a through 2.29.3.
|
CWE-79
Cross-site Scripting
|
CVE-2024-43970
|
2024-09-25 23:18 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309833
|
4.8 |
MEDIUM
Network
|
pagelayer
|
pagelayer
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Pagelayer Team PageLayer allows Stored XSS.This issue affects PageLayer: from n/a through …
|
CWE-79
Cross-site Scripting
|
CVE-2024-43972
|
2024-09-25 23:16 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309834
|
5.4 |
MEDIUM
Network
|
podlove
|
podlove_podcast_publisher
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Podlove Podlove Podcast Publisher allows Stored XSS.This issue affects Podlove Podcast Pub…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43983
|
2024-09-25 23:11 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309835
|
5.4 |
MEDIUM
Network
|
wayneconnor
|
sliding_door
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in wayneconnor Sliding Door allows Stored XSS.This issue affects Sliding Door: from n/a throu…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43987
|
2024-09-25 23:08 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309836
|
5.4 |
MEDIUM
Network
|
digitalnature
|
mystique
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in digitalnature Mystique allows Stored XSS.This issue affects Mystique: from n/a through 2.5…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43988
|
2024-09-25 22:55 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309837
|
5.4 |
MEDIUM
Network
|
webdzier
|
hotel_galaxy
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in webdzier Hotel Galaxy allows Stored XSS.This issue affects Hotel Galaxy: from n/a through …
|
CWE-79
Cross-site Scripting
|
CVE-2024-43991
|
2024-09-25 22:53 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309838
|
5.4 |
MEDIUM
Network
|
latepoint
|
latepoint
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Latepoint LatePoint allows Stored XSS.This issue affects LatePoint: from n/a through 4.9.9…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43992
|
2024-09-25 22:47 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309839
|
5.4 |
MEDIUM
Network
|
cryoutcreations
|
liquido
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Liquido allows Stored XSS.This issue affects Liquido: from n/a through 1.0…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43993
|
2024-09-25 22:44 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309840
|
7.5 |
HIGH
Network
|
apple
|
macos
iphone_os
ipados
|
An integrity issue was addressed with Beacon Protection. This issue is fixed in iOS 18 and iPadOS 18, tvOS 18, macOS Sequoia 15. An attacker may be able to force a device to disconnect from a secure …
|
NVD-CWE-noinfo
|
CVE-2024-40856
|
2024-09-25 22:43 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
