Show filters
13,164 Total Results
Displaying 611-620 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
Unknown
CVE-2024-5557
Disclosure Date: June 12, 2024 (last updated July 26, 2024)
CWE-532: Insertion of Sensitive Information into Log File vulnerability exists that could cause
exposure of SNMP credentials when an attacker has access to the controller logs.
0
Attacker Value
Unknown
CVE-2024-28970
Disclosure Date: June 12, 2024 (last updated September 19, 2024)
Dell Client BIOS contains an Out-of-bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to platform denial of service.
0
Attacker Value
Unknown
CVE-2024-28024
Disclosure Date: June 11, 2024 (last updated August 16, 2024)
A vulnerability exists in the FOXMAN-UN/UNEM in which sensitive information is
stored in cleartext within a resource that might be accessible to another control sphere.
0
Attacker Value
Unknown
CVE-2024-23111
Disclosure Date: June 11, 2024 (last updated August 23, 2024)
An improper neutralization of input during web page Generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all versions reboot page may allow a remote privileged attacker with super-admin access to execute JavaScript code via crafted HTTP GET requests.
0
Attacker Value
Unknown
CVE-2024-34684
Disclosure Date: June 11, 2024 (last updated August 10, 2024)
On Unix, SAP BusinessObjects Business
Intelligence Platform (Scheduling) allows an authenticated attacker with
administrator access on the local server to access the password of a local
account. As a result, an attacker can obtain non-administrative user
credentials, which will allow them to read or modify the remote server files.
0
Attacker Value
Unknown
CVE-2024-0653
Disclosure Date: June 11, 2024 (last updated June 11, 2024)
The Custom Field Template plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.6.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
0
Attacker Value
Unknown
CVE-2024-35744
Disclosure Date: June 10, 2024 (last updated June 13, 2024)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ravidhu Dissanayake Upunzipper allows Path Traversal, File Manipulation.This issue affects Upunzipper: from n/a through 1.0.0.
0
Attacker Value
Unknown
CVE-2024-35743
Disclosure Date: June 10, 2024 (last updated June 13, 2024)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Siteclean SC filechecker allows Path Traversal, File Manipulation.This issue affects SC filechecker: from n/a through 0.6.
0
Attacker Value
Unknown
CVE-2024-35712
Disclosure Date: June 10, 2024 (last updated June 13, 2024)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Jordy Meow Database Cleaner allows Relative Path Traversal.This issue affects Database Cleaner: from n/a through 1.0.5.
0
Attacker Value
Unknown
CVE-2024-35650
Disclosure Date: June 10, 2024 (last updated June 13, 2024)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Melapress MelaPress Login Security allows PHP Remote File Inclusion.This issue affects MelaPress Login Security: from n/a through 1.3.0.
0