5.3

CVSS3.1

CVE-2024-33880 -

An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019. It discloses full pathnames via Virto.SharePoint.FileDownloader/Api/Download.ashx?action=archive.

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: March 19, 2025, 6:15 p.m.

4.3

CVSS3.1

CVE-2021-45785 -

TruDesk Help Desk/Ticketing Solution v1.1.11 is vulnerable to a Cross-Site Request Forgery (CSRF) attack which would allow an attacker to restart the server, causing a DoS attack. The attacker must craft a webpage that would perform a GET request to the /api/v1/admin/restart endpoint, then the vict…

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: Nov. 21, 2024, 6:33 a.m.

7.5

CVSS3.1

CVE-2024-37677 -

An issue in Shenzhen Weitillage Industrial Co., Ltd the access management specialist V6.62.51215 allows a remote attacker to obtain sensitive information.

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: Nov. 21, 2024, 9:24 a.m.

4.1

CVSS3.1

CVE-2024-38903 -

H3C Magic R230 V100R002's udpserver opens port 9034, allowing attackers to execute arbitrary commands.

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: May 27, 2025, 4:21 p.m.

6

CVSS3.1

CVE-2024-6104 - go-retryablehttp can leak basic auth credentials to log files

go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7.

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: Nov. 21, 2024, 9:48 a.m.

10.0

CVSS3.1

CVE-2023-50029 -

PHP Injection vulnerability in the module "M4 PDF Extensions" (m4pdf) up to version 3.3.2 from PrestaAddons for PrestaShop allows attackers to run arbitrary code via the M4PDF::saveTemplate() method.

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: Nov. 21, 2024, 8:36 a.m.

4.7

CVSS3.1

CVE-2024-32936 - media: ti: j721e-csi2rx: Fix races while restarting DMA

In the Linux kernel, the following vulnerability has been resolved: media: ti: j721e-csi2rx: Fix races while restarting DMA After the frame is submitted to DMA, it may happen that the submitted list is not updated soon enough, and the DMA callback is triggered before that. This can lead to kerne…

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: Sept. 17, 2025, 5:01 p.m.

9.8

CVSS3.1

CVE-2024-33278 -

Buffer Overflow vulnerability in ASUS router RT-AX88U with firmware versions v3.0.0.4.388_24198 allows a remote attacker to execute arbitrary code via the connection_state_machine due to improper length validation for the cookie field.

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: Nov. 21, 2024, 9:16 a.m.

5.5

CVSS3.1

CVE-2024-33847 - f2fs: compress: don't allow unaligned truncation on released compress inode

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: don't allow unaligned truncation on released compress inode f2fs image may be corrupted after below testcase: - mkfs.f2fs -O extra_attr,compression -f /dev/vdb - mount /dev/vdb /mnt/f2fs - touch /mnt/f2fs/file - f…

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: Oct. 1, 2025, 1:56 p.m.

5.5

CVSS3.1

CVE-2024-39292 - um: Add winch to winch_handlers before registering winch IRQ

In the Linux kernel, the following vulnerability has been resolved: um: Add winch to winch_handlers before registering winch IRQ Registering a winch IRQ is racy, an interrupt may occur before the winch is added to the winch_handlers list. If that happens, register_winch_irq() adds to that list a…

πŸ“… Published: June 24, 2024, midnight πŸ”„ Last Modified: Nov. 4, 2025, 6:16 p.m.
Total resulsts: 342292
Page 8665 of 34,230
Β« previous page Β» next page
Filters