Dell Security Management Server versions prior to 11.9.0 suffer from a local privilege escalation vulnerability.
265530e02c210729e3640de0f5f23192ea5b21cae936f5ed87be61a93898f695LBT-T300-mini1 suffers from a remote buffer overflow vulnerability.
0d5605d4bf931abe29807024d5f54120a110b26a29b7d0372e0c12e6e2b5b118TPC-110W suffers from a missing authentication vulnerability.
a465de4bea0a0f0a26e4a6e310952a40f118cba393cb00abfccd1bb894d688f8WordPress RSVPMaker plugin versions 9.3.2 and below suffer from a remote SQL injection vulnerability.
66e514c92c46238d6305ed7cb7d15ec7a2822168dde570f73013b430aa0764fcTaokeyun versions up to 1.0.5 suffers from a remote SQL injection vulnerability.
1f422c49bad5c6f9ab4afd9b61892e4f89f1c8e3f531ea9bd64603a009bccfa3HaoKeKeJi YiQiNiu versions up to 3.1 suffer from a server-side request forgery vulnerability.
801b655eed6286d9fcfe47d883a75477216cba6d270053e5bc32cef9f76a18c8Proof of concept exploit for a privilege escalation issue in Android. In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a possible way to access adb before SUW completion due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
db6bf38c923aa8b48f087c92b0b649720e01af632d0cbebfd3cb67803d0a4bf9FreeSWITCH versions prior to 1.10.11 remote denial of service exploit that leverages a race condition in the hello handshake phase of the DTLS protocol.
c9c3686ee337d8542426ced66a1b6b5eb7140101aed0bc4ec11b15ee6a810dabSome mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow for an HTTP request smuggling attack. Configurations are affected when mod_proxy is enabled along with some form of RewriteRule or ProxyPassMatch in which a non-specific pattern matches some portion of the user-supplied request-target (URL) data and is then re-inserted into the proxied request-target using variable substitution.
fc8ce9f7d7e0b4e319fdc0f93ae787aa27d06febf30e2dbe83382cd573c9565dLost and Found Information System version 1.0 suffers from a remote SQL injection vulnerability.
26d0f1deb4fda9d9af13364671a7e8c2b6885870a63d654ccb53313326691e2aTP-Link TL-WR940N version 4 suffers from a buffer overflow vulnerability.
62f6eb49aaff40c54f96a31ba99f72a2f49bc9ddd44b7739ad50c5bb0a02efb2Sales of Cashier Goods version 1.0 suffers from a cross site scripting vulnerability.
69b13d3920936bb0509672577e9c22b2d306090fb12206c2e0a868d73e40847bPrestaShop Winbiz Payment module suffers from an improper limitation of a Pathname to a restricted directory.
fd9d9b41b3b106776bf4bded355ea6effd89622c59564f7bfb574cd7059f7f60Microsoft Microsoft Windows 11 version 22h2 suffers from a kernel privilege escalation vulnerability.
be4c5e79f9cf0b40f7b8ba9b4538a14f5731f19051d96808d39f4233d0d4064dAzure Apache Ambari version 2302250400 suffers from a spoofing vulnerability.
a59f6776d4aacfdd02dcb83d8333b2b5e421a9df5ff2079e452c760ede563817Microsoft SharePoint Enterprise Server 2016 suffers from a spoofing vulnerability.
dc69c8a196ae434905235f744cfdcbe0d497ed7ab1caa764b015de4a98a1e4d1Nokia ASIKA version 7.13.52 suffers from a hard-coded private key disclosure vulnerability.
ba290e4ad8f61e25e13991a6b32e0f12e28123576ee71b01dfcecb7262302d64WordPress Super Socializer plugin version 7.13.52 suffers from a cross site scripting vulnerability.
500b777953696c9fdb839937351514402c8d413e3650f3e88f7299c12594f542WordPress WP Sticky Social plugin version 1.0.1 suffers from cross site request forgery and cross site scripting vulnerabilities.
479e92cf55475922a543143a9c1fe4f295337a3f7b58ea422c35e1964de638fdWordPress Theme Medic theme version 1.0.0 suffers from having a weak password recovery mechanism for the forgot password flow.
b147ff47c6abbe8687a844e863552bae22ffcc1e8adf8de22f822ba1a2cb9382
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed