Lista CVE - 2024 / Settembre
Visualizzazione 601 - 700 di 2518 CVE per Settembre 2024 (Pagina 7 di 26)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2024-6796 | 2024-09-09 | Vulnerability in Baxter Connex Health Portal |
| CVE-2024-8610 | 2024-09-09 | SourceCodester Best House Rental Management System New Tenant Page index.php cross site scripting |
| CVE-2024-8611 | 2024-09-09 | itsourcecode Tailoring Management System ssms.php sql injection |
| CVE-2023-36103 | 2024-09-10 | Command Injection vulnerability in goform/SetIPTVCfg interface of Tenda AC15 V15.03.05.20... |
| CVE-2023-37226 | 2024-09-10 | Loftware Spectrum before 4.6 HF14 has Missing Authentication for a... |
| CVE-2023-37227 | 2024-09-10 | Loftware Spectrum before 4.6 HF13 Deserializes Untrusted Data. |
| CVE-2023-37229 | 2024-09-10 | Loftware Spectrum before 5.1 allows SSRF. |
| CVE-2023-37230 | 2024-09-10 | Loftware Spectrum (testDeviceConnection) before 5.1 allows SSRF. |
| CVE-2023-37231 | 2024-09-10 | Loftware Spectrum before 4.6 HF14 uses a Hard-coded Password. |
| CVE-2023-37232 | 2024-09-10 | Loftware Spectrum through 4.6 exposes Sensitive Information (Logs) to an... |
| CVE-2023-37233 | 2024-09-10 | Loftware Spectrum before 4.6 HF14 allows authenticated XXE attacks. |
| CVE-2023-37234 | 2024-09-10 | Loftware Spectrum through 4.6 has unprotected JMX Registry. |
| CVE-2024-25073 | 2024-09-10 | An issue was discovered in Samsung Semiconductor Mobile Processor and... |
| CVE-2024-25074 | 2024-09-10 | An issue was discovered in Samsung Semiconductor Mobile Processor and... |
| CVE-2024-31960 | 2024-09-10 | An issue was discovered in Samsung Mobile Processor Exynos 1480,... |
| CVE-2024-34831 | 2024-09-10 | cross-site scripting (XSS) vulnerability in Gibbon Core v26.0.00 allows an... |
| CVE-2024-37728 | 2024-09-10 | Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co.,... |
| CVE-2024-43040 | 2024-09-10 | Renwoxing Enterprise Intelligent Management System before v3.0 was discovered to... |
| CVE-2024-44667 | 2024-09-10 | Shenzhen Haichangxing Technology Co., Ltd HCX H822 4G LTE Router... |
| CVE-2024-44815 | 2024-09-10 | Vulnerability in Hathway Skyworth Router CM5100 v.4.1.1.24 allows a physically... |
| CVE-2024-44867 | 2024-09-10 | phpok v3.0 was discovered to contain an arbitrary file read... |
| CVE-2024-44871 | 2024-09-10 | An arbitrary file upload vulnerability in the component /admin/index.php of... |
| CVE-2024-44872 | 2024-09-10 | A reflected cross-site scripting (XSS) vulnerability in moziloCMS v3.0 allows... |
| CVE-2024-44893 | 2024-09-10 | An issue in the component /jeecg-boot/jmreport/dict/list of JimuReport v1.7.8 allows... |
| CVE-2024-44676 | 2024-09-10 | eladmin v2.7 and before is vulnerable to Cross Site Scripting... |
| CVE-2024-44677 | 2024-09-10 | eladmin v2.7 and before is vulnerable to Server-Side Request Forgery... |
| CVE-2024-38270 | 2024-09-10 | An insufficient entropy vulnerability caused by the improper use of... |
| CVE-2024-6342 | 2024-09-10 | **UNSUPPORTED WHEN ASSIGNED** A command injection vulnerability in the export-cgi... |
| CVE-2024-8268 | 2024-09-10 | Frontend Dashboard <= 2.2.4 - Authenticated (Subscriber+) Arbitrary Function Call |
| CVE-2024-8478 | 2024-09-10 | Affiliate Super Assistent <= 1.5.3 - Unauthenticated Arbitrary Shortcode Execution |
| CVE-2024-41729 | 2024-09-10 | Information Disclosure vulnerability in the SAP NetWeaver BW (BEx Analyzer) |
| CVE-2024-42371 | 2024-09-10 | Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform |
| CVE-2024-42378 | 2024-09-10 | Cross-Site Scripting (XSS) in eProcurement on S/4HANA |
| CVE-2024-42380 | 2024-09-10 | Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform |
| CVE-2024-44113 | 2024-09-10 | Information Disclosure vulnerability in the SAP Business Warehouse (BEx Analyzer) |
| CVE-2024-44114 | 2024-09-10 | Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform |
| CVE-2024-44115 | 2024-09-10 | Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform |
| CVE-2024-44116 | 2024-09-10 | Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform |
| CVE-2024-45286 | 2024-09-10 | Missing Authorization check in SAP Production and Revenue Accounting (Tobin interface) |
| CVE-2024-41728 | 2024-09-10 | Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform |
| CVE-2024-44112 | 2024-09-10 | Missing Authorization check in SAP for Oil & Gas (Transportation and Distribution) |
| CVE-2024-44117 | 2024-09-10 | Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform |
| CVE-2024-44120 | 2024-09-10 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal |
| CVE-2024-44121 | 2024-09-10 | Information Disclosure in SAP S/4 HANA (Statutory Reports) |
| CVE-2024-45279 | 2024-09-10 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server for ABAP (CRM Blueprint Application Builder Panel) |
| CVE-2024-45280 | 2024-09-10 | Cross-Site Scripting (XSS) Vulnerability in SAP NetWeaver AS Java (Logon Application) |
| CVE-2024-45281 | 2024-09-10 | DLL hijacking vulnerability in SAP BusinessObjects Business Intelligence Platform |
| CVE-2024-45504 | 2024-09-10 | Cross-site request forgery (CSRF) vulnerability in multiple Alps System Integration... |
| CVE-2024-45283 | 2024-09-10 | Information disclosure vulnerability in SAP NetWeaver AS for Java (Destination Service) |
| CVE-2024-0067 | 2024-09-10 | Marinus Pfund, member of the AXIS OS Bug Bounty Program,... |
| CVE-2024-45284 | 2024-09-10 | Missing authorization check in SAP Student Life Cycle Management (SLcM) |
| CVE-2024-6509 | 2024-09-10 | Marinus Pfund, member of the AXIS OS Bug Bounty Program,... |
| CVE-2024-45285 | 2024-09-10 | Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform |
| CVE-2024-21528 | 2024-09-10 | All versions of the package node-gettext are vulnerable to Prototype... |
| CVE-2024-6173 | 2024-09-10 | 51l3nc3, member of the AXIS OS Bug Bounty Program, has... |
| CVE-2024-6979 | 2024-09-10 | Amin Aliakbari, member of the AXIS OS Bug Bounty Program,... |
| CVE-2024-7784 | 2024-09-10 | During internal Axis Security Development Model (ASDM) threat-modelling, a flaw... |
| CVE-2024-7891 | 2024-09-10 | Floating Contact Button < 2.8 - Admin+ Stored XSS |
| CVE-2024-7955 | 2024-09-10 | Starbox < 3.5.2 - Admin+ Stored XSS |
| CVE-2024-44072 | 2024-09-10 | OS command injection vulnerability exists in BUFFALO wireless LAN routers... |
| CVE-2024-7655 | 2024-09-10 | Community by PeepSo – Social Network, Membership, Registration, User Profiles <= 6.4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting |
| CVE-2024-7618 | 2024-09-10 | Community by PeepSo – Social Network, Membership, Registration, User Profiles <= 6.4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via content Parameter |
| CVE-2024-42427 | 2024-09-10 | Dell ThinOS versions 2402 and 2405, contains an Improper Neutralization... |
| CVE-2024-6596 | 2024-09-10 | Endress+Hauser: Multiple products are vulnerable to code injection |
| CVE-2024-7734 | 2024-09-10 | Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors. |
| CVE-2024-42424 | 2024-09-10 | Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2,... |
| CVE-2024-42425 | 2024-09-10 | Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2,... |
| CVE-2024-8258 | 2024-09-10 | Insecure Electron Fuses in Logitech Options Plus Allowing Arbitrary Code Execution on macOS |
| CVE-2024-7698 | 2024-09-10 | Phoenix Contact: Access to CSRF tokens of higher privileged users in MGUARD products |
| CVE-2024-7699 | 2024-09-10 | Phoenix Contact: OS command execution in MGUARD products |
| CVE-2024-43385 | 2024-09-10 | Phoenix Contact: OS command execution through PROXY_HTTP_PORT in mGuard devices |
| CVE-2024-43386 | 2024-09-10 | Phoenix Contact: OS command execution through EMAIL_NOTIFICATION.TO in mGuard devices. |
| CVE-2024-43387 | 2024-09-10 | Phoenix Contact: Access files due to improper neutralization of special elements in MGUARD devices |
| CVE-2024-43388 | 2024-09-10 | Phoenix Contact: SNMP reconfiguration due to improper input validation in MGUARD devices |
| CVE-2024-43389 | 2024-09-10 | Phoenix Contact: OSPF reconfiguration due to improper input validation in MGUARD devices |
| CVE-2024-43390 | 2024-09-10 | Phoenix Contact: Firewall reconfiguration due to improper input validation in MGUARD devices |
| CVE-2024-43391 | 2024-09-10 | Phoenix Contact: Firewall reconfiguration through the FW_PORTFORWARDING.SRC_IP in MGUARD devices |
| CVE-2024-43392 | 2024-09-10 | Phoenix Contact: Firewall reconfiguration through the FW_environment variables in MGUARD devices |
| CVE-2024-43393 | 2024-09-10 | Phoenix Contact: Configuration changes of the firewall services can lead to DoS in MGUARD devices |
| CVE-2024-39583 | 2024-09-10 | Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a Use... |
| CVE-2024-39581 | 2024-09-10 | Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a File... |
| CVE-2024-39580 | 2024-09-10 | Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper... |
| CVE-2024-39574 | 2024-09-10 | Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management... |
| CVE-2024-39582 | 2024-09-10 | Dell PowerScale InsightIQ, version 5.0, contain a Use of hard... |
| CVE-2024-8543 | 2024-09-10 | Slider comparison image before and after <= 0.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2024-8241 | 2024-09-10 | Nova Blocks by Pixelgrade <= 2.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via align Attribute |
| CVE-2023-2919 | 2024-09-10 | Tutor LMS <= 2.7.4 - Cross-Site Request Forgery via 'addon_enable_disable' |
| CVE-2023-28827 | 2024-09-10 | A vulnerability has been identified in SIMATIC CP 1242-7 V2... |
| CVE-2023-30755 | 2024-09-10 | A vulnerability has been identified in SIMATIC CP 1242-7 V2... |
| CVE-2023-30756 | 2024-09-10 | A vulnerability has been identified in SIMATIC CP 1242-7 V2... |
| CVE-2023-49069 | 2024-09-10 | A vulnerability has been identified in Mendix Runtime V10 (All... |
| CVE-2024-32006 | 2024-09-10 | A vulnerability has been identified in SINEMA Remote Connect Client... |
| CVE-2024-33698 | 2024-09-10 | A vulnerability has been identified in Opcenter Execution Foundation (All... |
| CVE-2024-35783 | 2024-09-10 | A vulnerability has been identified in SIMATIC BATCH V9.1 (All... |
| CVE-2024-37990 | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT... |
| CVE-2024-37991 | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT... |
| CVE-2024-37992 | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT... |
| CVE-2024-37993 | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT... |
| CVE-2024-37994 | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT... |
| CVE-2024-37995 | 2024-09-10 | A vulnerability has been identified in SIMATIC Reader RF610R CMIIT... |