|
307721
|
- |
|
-
|
-
|
python_book V1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter.
|
-
|
CVE-2024-50650
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307722
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the administrative web-based GUI configuration manager of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to access sensitive configu…
|
CWE-317
Cleartext Storage of Sensitive Information in GUI
|
CVE-2021-34751
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307723
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the administrative web-based GUI configuration manager of Cisco Firepower Management Center Software could allow an authenticated, remote attacker to access sensitive configuration…
|
CWE-317
Cleartext Storage of Sensitive Information in GUI
|
CVE-2021-34750
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307724
|
6.5 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to inject arbitrary commands on an affected system and cause a denial of service (DoS…
|
CWE-88
Argument Injection
|
CVE-2021-1484
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307725
|
6.4 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system.
T…
|
CWE-611
XXE
|
CVE-2021-1483
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307726
|
6.4 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain access to sensitive…
|
CWE-20
Improper Input Validation
|
CVE-2021-1482
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307727
|
- |
|
-
|
-
|
The user avatar upload function in python_book V1.0 has an arbitrary file upload vulnerability.
|
-
|
CVE-2024-50649
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307728
|
- |
|
-
|
-
|
yshopmall V1.0 has an arbitrary file upload vulnerability, which can enable RCE or even take over the server when improperly configured to parse JSP files.
|
-
|
CVE-2024-50648
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307729
|
- |
|
-
|
-
|
The python_food ordering system V1.0 has an unauthorized vulnerability that leads to the leakage of sensitive user information. Attackers can access it through https://ip:port/api/myapp/index/user/in…
|
-
|
CVE-2024-50647
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307730
|
4.3 |
MEDIUM
Adjacent
|
-
|
-
|
A vulnerability in Cisco TelePresence CE and RoomOS could allow an unauthenticated, adjacent attacker to view sensitive information on an affected device.
This vulnerability exists because the aff…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-20094
|
2024-11-19 02:11 |
2024-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
