|
318061
|
9.8 |
CRITICAL
Network
|
upkeeper
|
upkeeper_manager
|
Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9.
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2024-42466
|
2024-08-29 05:48 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318062
|
9.8 |
CRITICAL
Network
|
upkeeper
|
upkeeper_manager
|
Improper Authentication vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Bypass.This issue affects upKeeper Manager: through 5.1.9.
|
CWE-287
Improper Authentication
|
CVE-2024-42462
|
2024-08-29 05:46 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318063
|
6.5 |
MEDIUM
Network
|
upkeeper
|
upkeeper_manager
|
Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue …
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-42463
|
2024-08-29 05:38 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318064
|
6.5 |
MEDIUM
Network
|
upkeeper
|
upkeeper_manager
|
Authorization Bypass Through User-Controlled Key vulnerability in upKeeper Solutions product upKeeper Manager allows Utilizing REST's Trust in the System Resource to Obtain Sensitive Data.This issue …
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-42464
|
2024-08-29 05:35 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318065
|
9.8 |
CRITICAL
Network
|
upkeeper
|
upkeeper_manager
|
Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9.
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2024-42465
|
2024-08-29 05:32 |
2024-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318066
|
7.2 |
HIGH
Network
|
versa-networks
|
versa_director
|
The Versa Director GUI provides an option to customize the look and feel of the user interface. This option is only available for a user logged with Provider-Data-Center-Admin or Provider-Data-Center…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-39717
|
2024-08-29 04:47 |
2024-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318067
|
- |
|
-
|
-
|
A vulnerability in Pantera CRM versions 401.152 and 402.072 allows unauthorized attackers to bypass IP-based access controls by manipulating the X-Forwarded-For header.
|
-
|
CVE-2024-40530
|
2024-08-29 04:15 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318068
|
8.3 |
HIGH
Network
|
microsoft
|
edge_chromium
|
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43472
|
2024-08-29 04:13 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318069
|
5.3 |
MEDIUM
Network
|
softlabbd
|
radio_player
|
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_player function in versions up to, and including, 2.0.73. This…
|
CWE-862
Missing Authorization
|
CVE-2023-4024
|
2024-08-29 03:32 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318070
|
5.3 |
MEDIUM
Network
|
softlabbd
|
radio_player
|
The Radio Player plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the update_player function in versions up to, and including, 2.0.73. This…
|
CWE-862
Missing Authorization
|
CVE-2023-4025
|
2024-08-29 03:30 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
