|
314581
|
8.8 |
HIGH
Network
|
wolfssl
|
wolfssl
|
Fault Injection vulnerability in wc_ed25519_sign_msg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker co-resides in the same system with a v…
|
CWE-74
Injection
|
CVE-2024-2881
|
2024-09-4 23:27 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314582
|
8.8 |
HIGH
Network
|
wolfssl
|
wolfssl
|
Fault Injection vulnerability in RsaPrivateDecryption function in wolfssl/wolfcrypt/src/rsa.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker co-resides in the same system with a vict…
|
CWE-74
Injection
|
CVE-2024-1545
|
2024-09-4 23:27 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314583
|
5.5 |
MEDIUM
Local
|
wolfssl
|
wolfssl
|
The side-channel protected T-Table implementation in wolfSSL up to version 5.6.5 protects against a side-channel attacker with cache-line resolution. In a controlled environment such as Intel SGX, an…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-1543
|
2024-09-4 23:26 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314584
|
8.8 |
HIGH
Network
|
progress
|
whatsup_gold
|
In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an authenticated low-privileged attacker to achieve privilege escalation by modifying a privileged user's passw…
|
CWE-89
SQL Injection
|
CVE-2024-6672
|
2024-09-4 23:23 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314585
|
5.4 |
MEDIUM
Network
|
jpatokal
|
openflights
|
openflights commit 5234b5b is vulnerable to Cross-Site Scripting (XSS) via php/trip.php
|
CWE-79
Cross-site Scripting
|
CVE-2024-41345
|
2024-09-4 23:17 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314586
|
4.3 |
MEDIUM
Network
|
dineshkarki
|
wp_armour_extended
|
Cross-Site Request Forgery (CSRF) vulnerability in Dinesh Karki WP Armour Extended.This issue affects WP Armour Extended: from n/a through 1.26.
|
CWE-352
Origin Validation Error
|
CVE-2024-43947
|
2024-09-4 23:16 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314587
|
- |
|
-
|
-
|
Rejected reason: Invalid security issue.
|
-
|
CVE-2024-6716
|
2024-09-4 23:15 |
2024-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314588
|
6.1 |
MEDIUM
Network
|
magic-post-thumbnail
|
magic_post_thumbnail
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Magic Post Thumbnail allows Reflected XSS.This issue affects Magic Post Thumbnail: from n/…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43921
|
2024-09-4 23:12 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314589
|
5.4 |
MEDIUM
Network
|
jegstudio
|
gutenverse
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jegstudio Gutenverse allows Stored XSS.This issue affects Gutenverse: from n/a through 1.9…
|
CWE-79
Cross-site Scripting
|
CVE-2024-43920
|
2024-09-4 23:06 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314590
|
9.8 |
CRITICAL
Network
|
propovoice
|
propovoice
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Propovoice Propovoice Pro allows SQL Injection.This issue affects Propovoice Pro: from n/a throug…
|
CWE-89
SQL Injection
|
CVE-2024-43941
|
2024-09-4 22:40 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
