Show filters
16,714 Total Results
Displaying 661-670 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
Unknown
CVE-2024-35117
Disclosure Date: December 11, 2024 (last updated March 11, 2025)
IBM OpenPages with Watson 9.0 may write sensitive information, under specific configurations, in clear text to the system tracing log files that could be obtained by a privileged user.
0
Attacker Value
Unknown
CVE-2024-52997
Disclosure Date: December 10, 2024 (last updated February 27, 2025)
Photoshop Desktop versions 26.0 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
0
Attacker Value
Unknown
CVE-2024-7572
Disclosure Date: December 10, 2024 (last updated February 27, 2025)
Insufficient permissions in Ivanti DSM before version 2024.3.5740 allows a local authenticated attacker to delete arbitrary files.
0
Attacker Value
Unknown
CVE-2024-11940
Disclosure Date: December 10, 2024 (last updated February 27, 2025)
The Property Hive Mortgage Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘price’ parameter in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
0
Attacker Value
Unknown
CVE-2024-45761
Disclosure Date: December 09, 2024 (last updated February 27, 2025)
Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper input validation vulnerability. A remote low-privileged malicious user could potentially exploit this vulnerability to load any web plugins or Java class leading to the possibility of altering the behavior of certain apps/OS or Denial of Service.
0
Attacker Value
Unknown
CVE-2024-45760
Disclosure Date: December 09, 2024 (last updated February 27, 2025)
Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper access control vulnerability. A remote low privileged user could potentially exploit this vulnerability via the HTTP GET method leading to unauthorized action with elevated privileges.
0
Attacker Value
Unknown
CVE-2023-51353
Disclosure Date: December 09, 2024 (last updated March 11, 2025)
Missing Authorization vulnerability in supsystic.com Popup by Supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup by Supsystic: from n/a through 1.10.19.
0
Attacker Value
Unknown
CVE-2023-49848
Disclosure Date: December 09, 2024 (last updated February 27, 2025)
Missing Authorization vulnerability in wooproductimporter Sharkdropship dropshipping for Aliexpress, eBay, Amazon, etsy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sharkdropship dropshipping for Aliexpress, eBay, Amazon, etsy: from n/a through 2.1.1.
0
Attacker Value
Unknown
CVE-2023-49194
Disclosure Date: December 09, 2024 (last updated February 27, 2025)
Insertion of Sensitive Information Into Debugging Code vulnerability in Importify Importify (Dropshipping WooCommerce) allows Retrieve Embedded Sensitive Data.This issue affects Importify (Dropshipping WooCommerce): from n/a through 1.0.4.
0
Attacker Value
Unknown
CVE-2023-30870
Disclosure Date: December 09, 2024 (last updated February 27, 2025)
Missing Authorization vulnerability in wooproductimporter Sharkdropship for AliExpress Dropship and Affiliate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sharkdropship for AliExpress Dropship and Affiliate: from n/a through 2.2.3.
0