VULNMAP - Vulnerabilità di Sicurezza

Lista CVE - 2024 / Luglio

Visualizzazione 501 - 600 di 3117 CVE per Luglio 2024 (Pagina 6 di 32)

ID CVE Data Titolo
CVE-2024-6580 2024-07-08 /n software IPWorks SSH insufficient file access verification
CVE-2024-6227 2024-07-08 Infinite Loop in aimhubio/aim
CVE-2024-38372 2024-07-08 Undici vulnerable to data leak when using response.arrayBuffer()
CVE-2024-5971 2024-07-08 Undertow: response write hangs in case of java 17 tlsv1.3 newsessionticket
CVE-2024-3653 2024-07-08 Undertow: learningpushhandler can lead to remote memory dos attacks
CVE-2024-28882 2024-07-08 OpenVPN from 2.6.0 through 2.6.10 in a server role accepts...
CVE-2023-48194 2024-07-09 Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the...
CVE-2023-50805 2024-07-09 A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor,...
CVE-2023-50806 2024-07-09 A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor,...
CVE-2023-50807 2024-07-09 A vulnerability was discovered in Samsung Wearable Processor and Modems...
CVE-2024-27360 2024-07-09 A vulnerability was discovered in Samsung Mobile Processors Exynos 850,...
CVE-2024-27361 2024-07-09 A vulnerability was discovered in Samsung Mobile Processor Exynos 980,...
CVE-2024-27363 2024-07-09 A vulnerability was discovered in Samsung Mobile Processor Exynos 850,...
CVE-2024-27385 2024-07-09 A vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung...
CVE-2024-27386 2024-07-09 A vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung...
CVE-2024-28067 2024-07-09 A vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle...
CVE-2024-28068 2024-07-09 A vulnerability was discovered in SS in Samsung Mobile Processor,...
CVE-2024-29153 2024-07-09 A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor,...
CVE-2024-36526 2024-07-09 ZKTeco ZKBio CVSecurity v6.1.1 was discovered to contain a hardcoded...
CVE-2024-36676 2024-07-09 Incorrect access control in BookStack before v24.05.1 allows attackers to...
CVE-2024-37829 2024-07-09 An issue in Outline <= v0.76.1 allows attackers to execute...
CVE-2024-37830 2024-07-09 An issue in Outline <= v0.76.1 allows attackers to redirect...
CVE-2024-37865 2024-07-09 An issue in S3Browser v.11.4.5 and v.10.9.9 and fixed in...
CVE-2024-37870 2024-07-09 SQL injection vulnerability in processscore.php in Learning Management System Project...
CVE-2024-37871 2024-07-09 SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum...
CVE-2024-37872 2024-07-09 SQL injection vulnerability in process.php in Itsourcecode Billing System in...
CVE-2024-37873 2024-07-09 SQL injection vulnerability in view_payslip.php in Itsourcecode Payroll Management System...
CVE-2024-38959 2024-07-09 Cross Site Scripting vulnerability in Creativeitem Academy LMS Learning Management...
CVE-2024-38963 2024-07-09 Nopcommerce 4.70.1 is vulnerable to Cross Site Scripting (XSS) via...
CVE-2024-38972 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-39031 2024-07-09 In Silverpeas Core <= 6.3.5, in Mes Agendas, a user...
CVE-2024-39063 2024-07-09 Lime Survey <= 6.5.12 is vulnerable to Cross Site Request...
CVE-2024-39069 2024-07-09 An issue in ifood Order Manager v3.35.5 'Gestor de Peddios.exe'...
CVE-2024-39071 2024-07-09 Fujian Kelixun <=7.6.6.4391 is vulnerable to SQL Injection in send_event.php.
CVE-2024-39072 2024-07-09 AMTT Hotel Broadband Operation System (HiBOS) v3.0.3.151204 is vulnerable to...
CVE-2024-39171 2024-07-09 Directory Travel in PHPVibe v11.0.46 due to incomplete blacklist checksums...
CVE-2024-39181 2024-07-09 Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered to...
CVE-2024-40034 2024-07-09 idccms v1.35 was discovered to contain a Cross-Site Request Forgery...
CVE-2024-40035 2024-07-09 idccms v1.35 was discovered to contain a Cross-Site Request Forgery...
CVE-2024-40036 2024-07-09 idccms v1.35 was discovered to contain a Cross-Site Request Forgery...
CVE-2024-40037 2024-07-09 idccms v1.35 was discovered to contain a Cross-Site Request Forgery...
CVE-2024-40038 2024-07-09 idccms v1.35 was discovered to contain a Cross-Site Request Forgery...
CVE-2024-40726 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40727 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40728 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40729 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40730 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40731 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40732 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40733 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40734 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40735 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40736 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40738 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40739 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40740 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40741 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40742 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-40750 2024-07-09 Linksys Velop Pro 6E 1.0.8 MX6200_1.0.8.215731 and 7 1.0.10.215314 devices...
CVE-2024-27362 2024-07-09 A vulnerability was discovered in Samsung Mobile Processors Exynos 1280,...
CVE-2024-31957 2024-07-09 A vulnerability was discovered in Samsung Mobile Processors Exynos 2200...
CVE-2024-38970 2024-07-09 vaeThink 1.0.2 is vulnerable to Information Disclosure via the system...
CVE-2024-38971 2024-07-09 vaeThink 1.0.2 is vulnerable to stored Cross Site Scripting (XSS)...
CVE-2024-39118 2024-07-09 Mommy Heather Advanced Backups up to v3.5.3 allows attackers to...
CVE-2024-40039 2024-07-09 idccms v1.35 was discovered to contain a Cross-Site Request Forgery...
CVE-2024-40737 2024-07-09 A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers...
CVE-2024-5549 2024-07-09 Data leak through CORS misconfiguration in stitionai/devika
CVE-2024-5569 2024-07-09 Denial of Service via crafted zip file in jaraco/zipp
CVE-2024-34786 2024-07-09 UniFi iOS app 10.15.0 introduces a misconfiguration on 2nd Generation...
CVE-2024-22020 2024-07-09 A security flaw in Node.js allows a bypass of network...
CVE-2024-5855 2024-07-09 Media Hygiene <= 3.0.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Attachment Deletion
CVE-2024-5793 2024-07-09 Houzez Theme - Functionality <= 3.2.2 - Authenticated (Seller+) SQL Injection
CVE-2024-4944 2024-07-09 Mobile VPN with SSL Local Privilege Escalation Vulnerability
CVE-2024-5974 2024-07-09 Firebox Authenticated Buffer Overflow Vulnerability
CVE-2024-6365 2024-07-09 Product Table by WBW <= 2.0.1 - Unauthenticated Remote Code Execution
CVE-2024-39592 2024-07-09 [CVE-2024-39592] Missing Authorization check in SAP PDCE
CVE-2024-39597 2024-07-09 [CVE-2024-39597] Improper Authorization Checks on Early Login Composable Storefront B2B sites of SAP Commerce
CVE-2024-39593 2024-07-09 [CVE-2024-39593] Information Disclosure vulnerability in SAP Landscape Management
CVE-2024-34685 2024-07-09 [CVE-2024-34685] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Knowledge Management XMLEditor
CVE-2024-37173 2024-07-09 [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI)
CVE-2024-37174 2024-07-09 [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI)
CVE-2024-39598 2024-07-09 [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI)
CVE-2024-37175 2024-07-09 [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI)
CVE-2024-39594 2024-07-09 [CVE-2024-39594] Multiple Cross-Site Scripting (XSS) vulnerabilities in SAP Business Warehouse - Business Planning and Simulation
CVE-2024-39595 2024-07-09 [CVE-2024-39594] Multiple Cross-Site Scripting (XSS) vulnerabilities in SAP Business Warehouse - Business Planning and Simulation
CVE-2024-37172 2024-07-09 [CVE-2024-37172] Missing Authorization check in SAP S/4HANA Finance (Advanced Payment Management)
CVE-2024-34689 2024-07-09 [CVE-2024-34689] Server-Side Request Forgery in SAP Business Workflow (WebFlow Services)
CVE-2024-39600 2024-07-09 [CVE-2024-39600] Information Disclosure vulnerability in SAP GUI for Windows
CVE-2024-37171 2024-07-09 [CVE-2024-37171] Server-Side Request Forgery (SSRF) in SAP Transportation Management (Collaboration Portal)
CVE-2024-39599 2024-07-09 [CVE-2024-39599] Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform
CVE-2024-39596 2024-07-09 [CVE-2024-39596] Missing Authorization check vulnerability in SAP Enable Now
CVE-2024-6171 2024-07-09 Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.112 - IP Address Spoofing to Antispam Bypass
CVE-2024-6166 2024-07-09 Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.112 - Authenticated (Contributor+) Time-Based SQL Injection
CVE-2024-4667 2024-07-09 Blog, Posts and Category Filter for Elementor <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Post and Category Filter Widget
CVE-2024-6170 2024-07-09 Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.112 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'email'
CVE-2024-6169 2024-07-09 Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.112 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'username'
CVE-2024-37180 2024-07-09 [CVE-2024-37180] Information Disclosure vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform
CVE-2024-34692 2024-07-09 [CVE-2024-34692] Unrestricted File upload vulnerability in SAP Enable Now
CVE-2024-5441 2024-07-09 Modern Events Calendar <= 7.11.0 - Authenticated (Subscriber+) Arbitrary File Upload
CVE-2024-3410 2024-07-09 DN Footer Contacts < 1.6.3 - Admin+ Stored XSS