9.6

CVSS3.1

CVE-2024-46367 -

A Stored Cross-Site Scripting (XSS) vulnerability in Webkul Krayin CRM 1.3.0 allows remote attackers to inject arbitrary JavaScript code by submitting a malicious payload within the username field. This can lead to privilege escalation when the payload is executed, granting the attacker elevated pe…

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: July 9, 2025, 5:41 p.m.

6.1

CVSS3.1

CVE-2024-25411 -

A cross-site scripting (XSS) vulnerability in Flatpress v1.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter in setup.php.

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: July 10, 2025, 3:27 p.m.

8.2

CVSS3.1

CVE-2024-40510 -

Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMCommon.asmx function.

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: March 14, 2025, 3:15 p.m.

8.8

CVSS3.1

CVE-2024-33369 -

Directory Traversal vulnerability in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary code via the getFileNameFromConnection method in DownloadTask

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: Sept. 30, 2024, 12:45 p.m.

7.8

CVSS3.1

CVE-2024-46831 - net: microchip: vcap: Fix use-after-free error in kunit test

In the Linux kernel, the following vulnerability has been resolved: net: microchip: vcap: Fix use-after-free error in kunit test This is a clear use-after-free error. We remove it, and rely on checking the return code of vcap_del_rule.

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:35 a.m.

7.3

CVSS3.1

CVE-2024-40512 -

Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMReporting.asmx function.

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: April 23, 2025, 3:56 p.m.

5.5

CVSS3.1

CVE-2024-46861 - usbnet: ipheth: do not stop RX on failing RX callback

In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: do not stop RX on failing RX callback RX callbacks can fail for multiple reasons: * Payload too short * Payload formatted incorrecly (e.g. bad NCM framing) * Lack of memory None of these should cause the driver …

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:36 a.m.

8.1

CVSS3.1

CVE-2024-46097 -

TestLink 1.9.20 is vulnerable to Incorrect Access Control in the TestPlan editing section. When a new TestPlan is created, an ID with an incremental value is automatically generated. Using the edit function you can change the tplan_id parameter to another ID. The application does not carry out a ch…

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: July 10, 2025, 3:33 p.m.

7.8

CVSS3.1

CVE-2024-46818 - drm/amd/display: Check gpio_id before used as array index

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check gpio_id before used as array index [WHY & HOW] GPIO_ID_UNKNOWN (-1) is not a valid value for array index and therefore should be checked in advance. This fixes 5 OVERRUN issues reported by Coverity.

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: Nov. 3, 2025, 11:16 p.m.

5.5

CVSS3.1

CVE-2024-46807 - drm/amd/amdgpu: Check tbo resource pointer

In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdgpu: Check tbo resource pointer Validate tbo resource pointer, skip if NULL

πŸ“… Published: Sept. 27, 2024, midnight πŸ”„ Last Modified: Nov. 3, 2025, 11:16 p.m.
Total resulsts: 349182
Page 8460 of 34,919
Β« previous page Β» next page
Filters