5.3

CVSS3.1

CVE-2024-29660 -

Cross Site Scripting vulnerability in DedeCMS v.5.7 allows a local attacker to execute arbitrary code via a crafted payload to the stepselect_main.php component.

πŸ“… Published: April 25, 2024, midnight πŸ”„ Last Modified: April 1, 2025, 6:05 p.m.

7.5

CVSS3.1

CVE-2024-32358 -

An issue in Jpress v.5.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the custom plug-in module function, a different vulnerability than CVE-2024-43033.

πŸ“… Published: April 25, 2024, midnight πŸ”„ Last Modified: June 3, 2025, 2:24 p.m.

7.1

CVSS3.1

CVE-2024-31609 -

Cross Site Scripting (XSS) vulnerability in BOSSCMS v3.10 allows attackers to run arbitrary code via the header code and footer code fields in code configuration.

πŸ“… Published: April 25, 2024, midnight πŸ”„ Last Modified: April 18, 2025, 6:42 p.m.

4.3

CVSS3.1

CVE-2024-1347 - Authentication Bypass by Spoofing in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address may be able to bypass domain based restrictions …

πŸ“… Published: April 25, 2024, midnight πŸ”„ Last Modified: Nov. 20, 2025, 4:11 a.m.

7.5

CVSS3.1

CVE-2024-23527 -

An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.

πŸ“… Published: April 24, 2024, 11:12 p.m. πŸ”„ Last Modified: May 6, 2025, 1:35 p.m.

7.5

CVSS3.0

CVE-2024-29205 -

An Improper Check for Unusual or Exceptional Conditions vulnerability in the web component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows a remote unauthenticated attacker to send specially crafted requests in-order-to cause service disruptions.

πŸ“… Published: April 24, 2024, 11:12 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-4155 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: April 24, 2024, 10:18 p.m. πŸ”„ Last Modified: June 11, 2024, 10:15 a.m.

0.0

CVE-2024-4152 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: April 24, 2024, 10:16 p.m. πŸ”„ Last Modified: June 7, 2024, 5:15 p.m.

5.4

CVSS3.1

CVE-2023-20249 -

A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient input validation by the…

πŸ“… Published: April 24, 2024, 8:47 p.m. πŸ”„ Last Modified: April 24, 2025, 2:34 p.m.

5.4

CVSS3.1

CVE-2023-20248 -

A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient input validation by the…

πŸ“… Published: April 24, 2024, 8:46 p.m. πŸ”„ Last Modified: April 4, 2025, 1 p.m.
Total resulsts: 349182
Page 10172 of 34,919
Β« previous page Β» next page
Filters