8.4

CVSS4.0

CVE-2024-39354 - Delta Electronics DIAScreen Stack-based Buffer Overflow

If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in CEtherIPTagItem can be exploited, allowing the attacker to remotely execute arbitrary code.

πŸ“… Published: Nov. 11, 2024, 2:59 p.m. πŸ”„ Last Modified: Jan. 30, 2025, 2:35 p.m.

8.4

CVSS4.0

CVE-2024-39605 - Delta Electronics DIAScreen Stack-based Buffer Overflow

If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetParameter can be exploited, allowing the attacker to remotely execute arbitrary code.

πŸ“… Published: Nov. 11, 2024, 2:57 p.m. πŸ”„ Last Modified: Jan. 30, 2025, 2:34 p.m.

8.4

CVSS4.0

CVE-2024-47131 - Delta Electronics DIAScreen Stack-based Buffer Overflow

If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetObjectInfo can be exploited, allowing the attacker to remotely execute arbitrary code.

πŸ“… Published: Nov. 11, 2024, 2:53 p.m. πŸ”„ Last Modified: Jan. 30, 2025, 2:35 p.m.

5.3

CVSS4.0

CVE-2024-11070 - Sanluan PublicCMS Tag Type save cross site scripting

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5.202406.d. This issue affects some unknown processing of the file /admin/cmsTagType/save of the component Tag Type Handler. The manipulation of the argument name leads to cross site scripting. The attack may …

πŸ“… Published: Nov. 11, 2024, 2:31 p.m. πŸ”„ Last Modified: Nov. 23, 2024, 1:31 a.m.

8.7

CVSS4.0

CVE-2024-10314 - Unauthenticated Denial of Service via Auto Generation Function

In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the auto-generation function was identified. Reported by Karol WiΔ™sek.

πŸ“… Published: Nov. 11, 2024, 2:11 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.7

CVSS4.0

CVE-2024-10344 - Unauthenticated Denial of Service via Refuse Function

In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the refuse function was identified. Reported by Karol WiΔ™sek.

πŸ“… Published: Nov. 11, 2024, 2:08 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.7

CVSS4.0

CVE-2024-10345 - Unauthenticated Denial of Service via Shutdown Function

In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the shutdown function was identified. Reported by Karol WiΔ™sek.

πŸ“… Published: Nov. 11, 2024, 1:28 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

3.3

CVSS3.0

CVE-2024-34015 -

Sensitive information disclosure during file browsing due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM (Linux) before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM (Linux) before build 1.9.1.892.

πŸ“… Published: Nov. 11, 2024, 1:21 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.0

CVE-2024-34014 -

Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM (Linux) before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM (Linux) before build 1.9.1.892, Acronis Backup extension for Plesk (Lin…

πŸ“… Published: Nov. 11, 2024, 1:20 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.4

CVSS3.1

CVE-2024-43437 - Moodle: xss risk when restoring malicious course backup file

A flaw was found in moodle. Insufficient sanitizing of data when performing a restore could result in a cross-site scripting (XSS) risk from malicious backup files.

πŸ“… Published: Nov. 11, 2024, 12:19 p.m. πŸ”„ Last Modified: April 23, 2025, 9:28 p.m.
Total resulsts: 349182
Page 7945 of 34,919
Β« previous page Β» next page
Filters