|
306521
|
- |
|
-
|
-
|
A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Agent could allow an attacker to escalate privileges and execute arbitrary code on an affected machine…
|
-
|
CVE-2024-51503
|
2024-11-20 06:56 |
2024-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306522
|
- |
|
-
|
-
|
This High severity RCE (Remote Code Execution) vulnerability was introduced in versions 4.2.8 of Sourcetree for Mac and 3.4.19 for Sourcetree for Windows.
This RCE (Remote Code Execution) vulnerab…
|
-
|
CVE-2024-21697
|
2024-11-20 06:56 |
2024-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306523
|
5.4 |
MEDIUM
Network
|
oretnom23
|
online_eyewear_shop
|
A vulnerability has been found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /oews/classes/Master.php…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2024-11247
|
2024-11-20 06:55 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306524
|
8.2 |
HIGH
Network
|
ibm
|
engineering_lifecycle_optimization_-_engineering_insights
|
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit …
|
CWE-611
XXE
|
CVE-2024-39726
|
2024-11-20 06:51 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306525
|
8.8 |
HIGH
Network
|
tenda
|
ac10_firmware
|
A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. Affected by this issue is the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of …
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2024-11248
|
2024-11-20 06:51 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306526
|
9.8 |
CRITICAL
Network
|
1000projects
|
portfolio_management_system_mca
|
A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical. This issue affects some unknown processing of the file /login.php. The manipulation of the a…
|
CWE-89
SQL Injection
|
CVE-2024-11256
|
2024-11-20 06:49 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306527
|
6.1 |
MEDIUM
Network
|
code-projects
|
farmacia
|
A vulnerability, which was classified as problematic, has been found in code-projects Farmacia 1.0. This issue affects some unknown processing of the file /fornecedores.php. The manipulation leads to…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11259
|
2024-11-20 06:47 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306528
|
9.8 |
CRITICAL
Network
|
weechat
|
weechat
|
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects string_free_split_shared , string_f…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2024-46613
|
2024-11-20 06:35 |
2024-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306529
|
- |
|
-
|
-
|
wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) 06df58f is vulnerable to NULL Pointer Dereference in function `block_type_get_result_types.
|
-
|
CVE-2024-27532
|
2024-11-20 06:35 |
2024-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306530
|
6.1 |
MEDIUM
Network
|
thimpress
|
learnpress_export_import
|
The LearnPress Export Import – WordPress extension for LearnPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'learnpress_import_form_server' parameter in all version…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9609
|
2024-11-20 06:28 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
