9.3

CVSS4.0

CVE-2024-39375 - Use of Client-Side Authentication in TELSAT marKoni FM Transmitter

TELSAT marKoni FM Transmitters are vulnerable to an attacker bypassing authentication and gaining administrator privileges.

πŸ“… Published: June 27, 2024, 4:07 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:27 a.m.

9.3

CVSS4.0

CVE-2024-39374 - Use of Hard-coded Credentials in TELSAT marKoni FM Transmitter

TELSAT marKoni FM Transmitters are vulnerable to an attacker exploiting a hidden admin account that can be accessed through the use of hard-coded credentials.

πŸ“… Published: June 27, 2024, 4:03 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:27 a.m.

9.3

CVSS4.0

CVE-2024-39373 - Improper Neutralization of Special Elements used in a Command in TELSAT marKoni FM Transmitter

TELSAT marKoni FM Transmitters are vulnerable to a command injection vulnerability through the manipulation of settings and could allow an attacker to gain unauthorized access to the system with administrative privileges.

πŸ“… Published: June 27, 2024, 3:59 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:27 a.m.

5.5

CVSS3.1

CVE-2023-30430 - IBM Security Verify Access information disclosure

IBM Security Verify Access 10.0.0 through 10.0.7.1 could allow a local user to obtain sensitive information from trace logs. IBM X-Force ID: 252183.

πŸ“… Published: June 27, 2024, 3:53 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 8 a.m.

5.3

CVSS3.1

CVE-2024-31883 - IBM Security Verify Access denial of service

IBM Security Verify Access 10.0.0.0 through 10.0.7.1, under certain configurations, could allow an unauthenticated attacker to cause a denial of service due to asymmetric resource consumption. IBM X-Force ID: 287615.

πŸ“… Published: June 27, 2024, 3:50 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:14 a.m.

5.9

CVSS3.1

CVE-2024-6388 -

Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon, before version 1.12, leaks the Pro token to unprivileged users by passing the token as an argument in plaintext.

πŸ“… Published: June 27, 2024, 3:39 p.m. πŸ”„ Last Modified: Aug. 27, 2025, 4:18 p.m.

5.3

CVSS4.0

CVE-2024-6374 - lahirudanushka School Management System Subject Page subject.php cross site scripting

A vulnerability was found in lahirudanushka School Management System 1.0.0/1.0.1 and classified as problematic. This issue affects some unknown processing of the file /subject.php of the component Subject Page. The manipulation of the argument Subject Title/Sybillus Details leads to cross site scri…

πŸ“… Published: June 27, 2024, 1:31 p.m. πŸ”„ Last Modified: July 12, 2025, 10:23 p.m.

4.6

CVSS3.1

CVE-2024-1153 - SQL Injection Vulnerability in Talya Informatics' Travel APPS

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travel APPS: before v17.0.68.

πŸ“… Published: June 27, 2024, 1:09 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 1:15 p.m.

9.8

CVSS3.1

CVE-2024-1107 - IDOR in Talya Informatics' Travel APPS

Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travel APPS: before v17.0.68.

πŸ“… Published: June 27, 2024, 1:01 p.m. πŸ”„ Last Modified: Sept. 12, 2025, 7:15 a.m.

6.9

CVSS4.0

CVE-2024-6373 - itsourcecode Online Food Ordering System addproduct.php unrestricted upload

A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be initiated remotely. The exploi…

πŸ“… Published: June 27, 2024, 1 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:49 a.m.
Total resulsts: 342653
Page 8663 of 34,266
Β« previous page Β» next page
Filters