5.1

CVSS3.1

CVE-2024-30656 -

An issue in Fireboltt Dream Wristphone BSW202_FB_AAC_v2.0_20240110-20240110-1956 allows attackers to cause a Denial of Service (DoS) via a crafted deauth frame.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: June 20, 2025, 7:13 p.m.

7.8

CVSS3.1

CVE-2023-33806 -

Insecure default configurations in Hikvision Interactive Tablet DS-D5B86RB/B V2.3.0 build220119, allows attackers to execute arbitrary commands.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: June 20, 2025, 7:12 p.m.

9.1

CVSS3.1

CVE-2024-24486 -

An issue discovered in silex technology DS-600 Firmware v.1.4.1 allows a remote attacker to edit device settings via the SAVE EEP_DATA command.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: April 10, 2025, 1:39 p.m.

5.9

CVSS3.1

CVE-2024-3772 - Regular expression denial of service in Pydantic < 2.4.0

Regular expression denial of service in Pydanic < 2.4.0, < 1.10.13 allows remote attackers to cause denial of service via a crafted email string.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: Dec. 9, 2025, 6:26 p.m.

6.1

CVSS3.1

CVE-2024-32489 -

TCPDF before 6.7.4 mishandles calls that use HTML syntax.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: Nov. 3, 2025, 8:16 p.m.

7.8

CVSS3.1

CVE-2024-32488 -

In Foxit PDF Reader and Editor before 2024.1, Local Privilege Escalation could occur during update checks because weak permissions on the update-service folder allow attackers to place crafted DLL files there.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: July 9, 2025, 2:52 p.m.

4.8

CVSS3.1

CVE-2024-31990 - Argo CD' API server does not enforce project sourceNamespaces

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. The API server does not enforce project sourceNamespaces which allows attackers to use the UI to edit resources which should only be mutable via gitops. This vulenrability is fixed in 2.10.7, 2.9.12, and 2.8.16.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: Jan. 9, 2025, 5:04 p.m.

6.3

CVSS3.1

CVE-2024-30567 -

An issue in JNT Telecom JNT Liftcom UMS V1.J Core Version JM-V15 allows a remote attacker to execute arbitrary code via the Network Troubleshooting functionality.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.4

CVSS3.1

CVE-2024-31649 -

A cross-site scripting (XSS) in Cosmetics and Beauty Product Online Store v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Product Name parameter.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: April 10, 2025, 2:20 p.m.

8.8

CVSS3.1

CVE-2024-28558 -

SQL Injection vulnerability in sourcecodester Petrol pump management software v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to admin/app/web_crud.php.

๐Ÿ“… Published: April 15, 2024, midnight ๐Ÿ”„ Last Modified: March 27, 2025, 8:19 p.m.
Total resulsts: 349182
Page 10300 of 34,919
ยซ previous page ยป next page
Filters