6.1

CVSS3.1

CVE-2022-34562 -

A cross-site scripting (XSS) vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the status box.

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: April 22, 2025, 4:05 p.m.

9.1

CVSS3.1

CVE-2024-27574 -

SQL Injection vulnerability in Trainme Academy version Ichin v.1.3.2 allows a remote attacker to obtain sensitive information via the informacion, idcurso, and tit parameters.

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.6

CVSS3.1

CVE-2024-32399 -

Directory Traversal vulnerability in RaidenMAILD Mail Server v.4.9.4 and before allows a remote attacker to obtain sensitive information via the /webeditor/ component.

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.4

CVSS3.1

CVE-2024-29376 -

Sylius 1.12.13 is vulnerable to Cross Site Scripting (XSS) via the "Province" field in Address Book.

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: Sept. 15, 2025, 3:50 p.m.

6.1

CVSS3.1

CVE-2023-38294 -

Certain software builds for the Itel Vision 3 Turbo Android device contain a vulnerable pre-installed app with a package name of com.transsion.autotest.factory (versionCode='7', versionName='1.8.0(220310_1027)') that allows local third-party apps to execute arbitrary shell commands in its context (โ€ฆ

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.3

CVSS3.1

CVE-2023-38302 -

A certain software build for the Sharp Rouvo V device (SHARP/VZW_STTM21VAPP/STTM21VAPP:12/SP1A.210812.016/1KN0_0_530:user/release-keys) leaks the Wi-Fi MAC address and the Bluetooth MAC address to system properties that can be accessed by any local app on the device without any permissions or speciโ€ฆ

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2023-38295 -

Certain software builds for the TCL 30Z and TCL 10 Android devices contain a vulnerable, pre-installed app that relies on a missing permission that provides no protection at runtime. The missing permission is required as an access permission by components in various pre-installed apps. On the TCL 3โ€ฆ

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.8

CVSS3.1

CVE-2024-32418 -

An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the add_addon.php component.

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: April 30, 2025, 4:47 p.m.

8.8

CVSS3.1

CVE-2024-32407 -

An issue in inducer relate before v.2024.1 allows a remote attacker to execute arbitrary code via a crafted payload to the Page Sandbox feature.

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: June 13, 2025, 4:11 p.m.

7.3

CVSS3.1

CVE-2024-32368 -

Insecure Permission vulnerability in Agasta Sanketlife 2.0 Pocket 12-Lead ECG Monitor FW Version 3.0 allows a local attacker to cause a denial of service via the Bluetooth Low Energy (BLE) component.

๐Ÿ“… Published: April 22, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 10196 of 34,919
ยซ previous page ยป next page
Filters