|
311551
|
- |
|
-
|
-
|
External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls.Thi…
|
CWE-73
CWE-732
External Control of File Name or Path
Incorrect Permission Assignment for Critical Resource
|
CVE-2024-9142
|
2024-10-15 01:35 |
2024-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311552
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-48251. Reason: This candidate is a reservation duplicate of CVE-2024-48251. Notes: All CVE users should reference CVE-2024-4825…
|
-
|
CVE-2024-48261
|
2024-10-15 00:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311553
|
- |
|
-
|
-
|
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
|
-
|
CVE-2024-40616
|
2024-10-15 00:15 |
2024-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311554
|
6.5 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in Privilege escalation. A low-privileged attacke…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45132
|
2024-10-14 20:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311555
|
5.4 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged at…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45131
|
2024-10-14 20:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311556
|
5.4 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged at…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45128
|
2024-10-14 20:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311557
|
- |
|
-
|
-
|
** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Security IP Camera D8801 due to usage of insecure Real-Time Streaming Protocol (RTSP) version for live video streaming. A remote atta…
|
CWE-862
Missing Authorization
|
CVE-2024-47790
|
2024-10-14 20:15 |
2024-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311558
|
- |
|
-
|
-
|
** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in D3D Security IP Camera D8801 due to usage of weak authentication scheme of the HTTP header protocol where authorization tag contain a Base…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2024-47789
|
2024-10-14 20:15 |
2024-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311559
|
- |
|
-
|
-
|
Local File Inclusion vulnerability in pretix Widget WordPress plugin pretix-widget on Windows allows PHP Local File Inclusion. This issue affects pretix Widget WordPress plugin: from 1.0.0 through 1.…
|
-
|
CVE-2024-9575
|
2024-10-14 17:15 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311560
|
7.5 |
HIGH
Network
|
haproxy
|
haproxy
|
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding (h2_send loop) under a certain set of conditions, as expl…
|
NVD-CWE-noinfo
|
CVE-2024-45506
|
2024-10-14 12:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
