7.6

CVSS3.1

CVE-2024-41630 -

Stack-based buffer overflow vulnerability in Tenda AC18 V15.03.3.10_EN allows a remote attacker to execute arbitrary code via the ssid parameter at ip/goform/fast_setting_wifi_set.

πŸ“… Published: July 31, 2024, midnight πŸ”„ Last Modified: April 7, 2025, 5:13 p.m.

8.8

CVSS3.1

CVE-2024-40464 -

An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the sendMail function located in beego/core/logs/smtp.go file

πŸ“… Published: July 31, 2024, midnight πŸ”„ Last Modified: Aug. 15, 2024, 1:02 p.m.

7.5

CVSS3.1

CVE-2024-41255 -

filestash v0.4 is configured to skip TLS certificate verification when using the FTPS protocol, possibly allowing attackers to execute a man-in-the-middle attack via the Init function of index.go.

πŸ“… Published: July 31, 2024, midnight πŸ”„ Last Modified: Sept. 29, 2025, 2:08 p.m.

5.9

CVSS3.1

CVE-2024-41256 -

Default configurations in the ShareProofVerifier function of filestash v0.4 causes the application to skip the TLS certificate verification process when sending out email verification codes, possibly allowing attackers to access sensitive data via a man-in-the-middle attack.

πŸ“… Published: July 31, 2024, midnight πŸ”„ Last Modified: March 18, 2025, 6:15 p.m.

5.3

CVSS3.1

CVE-2024-41254 -

An issue was discovered in litestream v0.3.13. The usage of the ssh.InsecureIgnoreHostKey() disables host key verification, possibly allowing attackers to obtain sensitive information via a man-in-the-middle attack.

πŸ“… Published: July 31, 2024, midnight πŸ”„ Last Modified: Oct. 29, 2024, 9:35 p.m.

5.1

CVSS4.0

CVE-2024-7277 - itsourcecode Alton Management System Add a Menu menu.php unrestricted upload

A vulnerability was found in itsourcecode Alton Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/menu.php of the component Add a Menu. The manipulation of the argument image leads to unrestricted upload. The attack may be laun…

πŸ“… Published: July 30, 2024, 11:31 p.m. πŸ”„ Last Modified: May 14, 2025, 4 p.m.

5.1

CVSS4.0

CVE-2024-7276 - itsourcecode Alton Management System member_save.php sql injection

A vulnerability has been found in itsourcecode Alton Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/member_save.php. The manipulation of the argument last/first leads to sql injection. The attack can be launched remote…

πŸ“… Published: July 30, 2024, 11 p.m. πŸ”„ Last Modified: May 14, 2025, 4 p.m.

5.1

CVSS4.0

CVE-2024-7275 - itsourcecode Alton Management System category_save.php sql injection

A vulnerability, which was classified as critical, was found in itsourcecode Alton Management System 1.0. Affected is an unknown function of the file /admin/category_save.php. The manipulation of the argument category leads to sql injection. It is possible to launch the attack remotely. The exploit…

πŸ“… Published: July 30, 2024, 10:31 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:51 a.m.

6.5

CVSS3.1

CVE-2024-37281 - Kibana Denial of Service issue

An issue was discovered in Kibana where a user with Viewer role could cause a Kibana instance to crash by sending a large number of maliciously crafted requests to a specific endpoint.

πŸ“… Published: July 30, 2024, 9:45 p.m. πŸ”„ Last Modified: Sept. 29, 2025, 2:09 p.m.

5.1

CVSS4.0

CVE-2024-7274 - itsourcecode Alton Management System reservation_status.php sql injection

A vulnerability, which was classified as critical, has been found in itsourcecode Alton Management System 1.0. This issue affects some unknown processing of the file /reservation_status.php. The manipulation of the argument rcode leads to sql injection. The attack may be initiated remotely. The exp…

πŸ“… Published: July 30, 2024, 9:31 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:51 a.m.
Total resulsts: 349182
Page 8994 of 34,919
Β« previous page Β» next page
Filters