4.6

CVSS3.1

CVE-2024-32744 -

A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the PAGE KEYWORDS parameter under the CURRENT PAGE module.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: April 11, 2025, 2:49 p.m.

8.8

CVSS3.1

CVE-2024-32292 -

Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the formexeCommand function via the cmdinput parameter.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: March 17, 2025, 4 p.m.

5.5

CVSS3.1

CVE-2024-26855 - net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()

In the Linux kernel, the following vulnerability has been resolved: net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink() The function ice_bridge_setlink() may encounter a NULL pointer dereference if nlmsg_find_attr() returns NULL and br_spec is dereferenced subsequently in nla…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:58 a.m.

2.7

CVSS3.1

CVE-2024-31040 -

Buffer Overflow vulnerability in the get_var_integer function in mqtt_parser.c in NanoMQ 0.21.7 allows remote attackers to cause a denial of service via a series of specially crafted hexstreams.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: June 10, 2025, 1:38 a.m.

9.8

CVSS3.1

CVE-2024-30990 -

SQL Injection vulnerability in the "Invoices" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "searchdata" parameter.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: April 10, 2025, 1:40 p.m.

5.4

CVSS3.1

CVE-2024-30989 -

Cross Site Scripting vulnerability in /edit-client-details.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code via the "cname", "comname", "state" and "city" parameter.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: April 10, 2025, 1:40 p.m.

4.3

CVSS3.1

CVE-2024-30981 -

SQL Injection vulnerability in /edit-computer-detail.php in phpgurukul Cyber Cafe Management System Using PHP & MySQL v1.0 allows attackers to run arbitrary SQL commands via editid in the application URL.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: April 7, 2025, 4:52 p.m.

6.1

CVSS3.1

CVE-2024-30951 -

FUDforum v3.1.3 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the chpos parameter at /adm/admsmiley.php.

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: June 10, 2025, 3:37 p.m.

4.7

CVSS3.1

CVE-2024-26837 - net: bridge: switchdev: Skip MDB replays of deferred events on offload

In the Linux kernel, the following vulnerability has been resolved: net: bridge: switchdev: Skip MDB replays of deferred events on offload Before this change, generation of the list of MDB events to replay would race against the creation of new group memberships, either from the IGMP/MLD snooping…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:57 a.m.

5.5

CVSS3.1

CVE-2024-26851 - netfilter: nf_conntrack_h323: Add protection for bmp length out of range

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: Add protection for bmp length out of range UBSAN load reports an exception of BRK#5515 SHIFT_ISSUE:Bitwise shifts that are out of bounds for their data type. vmlinux get_bitmap(b=75) + 712 <net/ne…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:57 a.m.
Total resulsts: 349182
Page 10239 of 34,919
Β« previous page Β» next page
Filters