6.3

CVSS3.1

CVE-2021-26278 - Sensitive information leakage vulnerability in wifi module

The wifi module exposes the interface and has improper permission control, leaking sensitive information about the device.

πŸ“… Published: Dec. 17, 2024, 3:05 a.m. πŸ”„ Last Modified: Dec. 17, 2024, 5:30 p.m.

7

CVSS3.1

CVE-2020-12487 - Command Execution Vulnerability in ABE service

Due to the flaws in the verification of input parameters, the attacker can input carefully constructed commands to make the ABE service execute some commands with root privilege.

πŸ“… Published: Dec. 17, 2024, 2:53 a.m. πŸ”„ Last Modified: Dec. 17, 2024, 2:44 p.m.

6.4

CVSS3.1

CVE-2020-12484 -

When using special mode to connect to enterprise wifi, certain options are not properly configured and attackers can pretend to be enterprise wifi through a carefully constructed wifi with the same name, which can lead to man-in-the-middle attacks.

πŸ“… Published: Dec. 17, 2024, 2:36 a.m. πŸ”„ Last Modified: Dec. 17, 2024, 2:54 p.m.

6.1

CVSS3.1

CVE-2024-12239 - PowerPack Lite for Beaver Builder <= 1.3.0.5 - Reflected Cross-Site Scripting via Navigate Parameter

The PowerPack Lite for Beaver Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the navigate parameter in all versions up to, and including, 1.3.0.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inj…

πŸ“… Published: Dec. 17, 2024, 1:45 a.m. πŸ”„ Last Modified: April 8, 2026, 4:52 p.m.

9.4

CVSS3.1

CVE-2024-10205 - Authorization bypass vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Cent…

Authentication Bypass vulnerability in Hitachi Ops Center Analyzer on Linux, 64 bit (Hitachi Ops Center Analyzer detail view component), Hitachi Infrastructure Analytics Advisor on Linux, 64 bit (Hitachi Data Center Analytics component ).This issue affects Hitachi Ops Center Analyzer: from 10.0.…

πŸ“… Published: Dec. 17, 2024, 1:16 a.m. πŸ”„ Last Modified: July 24, 2025, 9:26 p.m.

7.5

CVSS3.1

CVE-2024-51175 -

An issue in H3C switch h3c-S1526 allows a remote attacker to obtain sensitive information via the S1526.cfg component.

πŸ“… Published: Dec. 17, 2024, midnight πŸ”„ Last Modified: Dec. 18, 2024, 4:15 p.m.

9.8

CVSS3.1

CVE-2024-55515 -

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /upload_ipslib.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded.

πŸ“… Published: Dec. 17, 2024, midnight πŸ”„ Last Modified: April 28, 2025, 5:13 p.m.

6.3

CVSS3.1

CVE-2024-55514 -

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component affected by this issue is /upload_sfmig.php on the web interface. By crafting a suitable form name, arbitrary files can be uploaded, potentially leading to unauthorized access to server permissions.

πŸ“… Published: Dec. 17, 2024, midnight πŸ”„ Last Modified: April 28, 2025, 5:13 p.m.

7.3

CVSS3.1

CVE-2024-49194 -

Databricks JDBC Driver 2.x before 2.6.40 could potentially allow remote code execution (RCE) by triggering a JNDI injection via a JDBC URL parameter. The vulnerability is rooted in the improper handling of the krbJAASFile parameter. An attacker could potentially exploit this vulnerability to achiev…

πŸ“… Published: Dec. 17, 2024, midnight πŸ”„ Last Modified: July 2, 2025, 12:15 p.m.

6.1

CVSS3.1

CVE-2024-55059 -

A stored HTML Injection vulnerability was identified in PHPGurukul Online Birth Certificate System v1.0 in /user/certificate-form.php.

πŸ“… Published: Dec. 17, 2024, midnight πŸ”„ Last Modified: March 27, 2025, 4:24 p.m.
Total resulsts: 343919
Page 6911 of 34,392
Β« previous page Β» next page
Filters