IDCVSSSummaryLast (major) updatePublished
CVE-2024-21501 None
Versions of the package sanitize-html before 2.12.1 are vulnerable to Information Exposure when used on the backend and with the style attribute allowed, allowing enumeration of files in the system (including project dependencies). An attacker could
24-02-2024 - 05:15 24-02-2024 - 05:15
CVE-2024-21502 None
Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Variable on the stack, via the curvemath_mul function in src/curveMath.c, due to being used and interpreted as user-defined type. Depending on the variable's actual
24-02-2024 - 05:15 24-02-2024 - 05:15
CVE-2024-1810 None
The Archivist – Custom Archive Templates plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘shortcode_attributes' parameter in all versions up to, and including, 1.7.5 due to insufficient input sanitization and output escap
24-02-2024 - 05:15 24-02-2024 - 05:15
CVE-2024-22395 None
Improper access control vulnerability has been identified in the SMA100 SSL-VPN virtual office portal, which in specific conditions could potentially enable a remote authenticated attacker to associate another user's MFA mobile application.
24-02-2024 - 00:15 24-02-2024 - 00:15
CVE-2024-22988 None
An issue in zkteco zkbio WDMS v.8.0.5 allows an attacker to execute arbitrary code via the /files/backup/ component.
23-02-2024 - 23:15 23-02-2024 - 23:15
CVE-2024-24681 None
Insecure AES key in Yealink Configuration Encrypt Tool below verrsion 1.2. A single, vendorwide, hardcoded AES key in the configuration tool used to encrypt provisioning documents was leaked leading to a compromise of confidentiality of provisioning
23-02-2024 - 23:15 23-02-2024 - 23:15
CVE-2024-25469 None
SQL Injection vulnerability in CRMEB crmeb_java v.1.3.4 and before allows a remote attacker to obtain sensitive information via the latitude and longitude parameters in the api/front/store/list component.
23-02-2024 - 23:15 23-02-2024 - 23:15
CVE-2024-26188 None
Microsoft Edge (Chromium-based) Spoofing Vulnerability
23-02-2024 - 23:15 23-02-2024 - 23:15
CVE-2024-26192 None
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
23-02-2024 - 23:15 23-02-2024 - 23:15
CVE-2024-24310 None
In the module "Generate barcode on invoice / delivery slip" (ecgeneratebarcode) from Ether Creation <= 1.2.0 for PrestaShop, a guest can perform SQL injection.
23-02-2024 - 22:15 23-02-2024 - 22:15
CVE-2024-25730 None
Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy (only about one million possibilities).
23-02-2024 - 22:15 23-02-2024 - 22:15
CVE-2024-27132 None
Insufficient sanitization in MLflow leads to XSS when running an untrusted recipe. This issue leads to a client-side RCE when running an untrusted recipe in Jupyter Notebook. The vulnerability stems from lack of sanitization over template variables
23-02-2024 - 22:15 23-02-2024 - 22:15
CVE-2024-27133 None
Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untrusted dataset. This issue leads to a client-side RCE when running the recipe in Jupyter Notebook. The vulnerability stems from lack of sanitization over dataset t
23-02-2024 - 22:15 23-02-2024 - 22:15
CVE-2024-21423 None
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
23-02-2024 - 22:15 23-02-2024 - 22:15
CVE-2024-24309 None
In the module "Survey TMA" (ecomiz_survey_tma) up to version 2.0.0 from Ecomiz for PrestaShop, a guest can download personal information without restriction.
23-02-2024 - 22:15 23-02-2024 - 22:15
CVE-2021-33084 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33112 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33121 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33134 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33141 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33142 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33143 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33156 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33163 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-3885 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-41853 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33085 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33116 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33138 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33145 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33144 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33157 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33160 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33158 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-37405 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33072 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33099 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33109 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33127 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33100 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33148 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33111 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33102 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33125 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33132 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33131 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33133 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33136 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33140 None
23-02-2024 - 21:15 23-02-2024 - 21:15
CVE-2021-33146 None
23-02-2024 - 21:15 23-02-2024 - 21:15
Back to Top Mark selected
Back to Top