5.4

CVSS3.1

CVE-2024-31613 -

BOSSCMS v3.10 is vulnerable to Cross Site Request Forgery (CSRF) in name="head_code" or name="foot_code."

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: June 10, 2025, 6:14 p.m.

0.0

CVE-2024-37790 -

DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: June 21, 2024, 4:15 p.m.

9.1

CVSS3.1

CVE-2024-31611 -

SeaCMS 12.9 has a file deletion vulnerability via admin_template.php.

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: March 13, 2025, 6:15 p.m.

9.1

CVSS3.1

CVE-2024-32167 -

Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Arbitrary file deletion vulnerability as the backend settings have the function of deleting pictures to delete any files.

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: March 25, 2025, 4 p.m.

7.8

CVSS3.1

CVE-2024-26507 -

An issue in FinalWire AIRDA Extreme, AIDA64 Engineer, AIDA64 Business, AIDA64 Network Audit v.7.00.6700 and before allows a local attacker to escalate privileges via the DeviceIoControl call associated with MmMapIoSpace, IoAllocateMdl, MmBuildMdlForNonPagedPool, or MmMapLockedPages components.

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

4

CVSS3.1

CVE-2023-4458 - Kernel: ksmbd: smb2_open out-of-bounds read information disclosure vulnerability

A flaw was found within the parsing of extended attributes in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose sensitive information on affecโ€ฆ

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: Aug. 19, 2025, 5:32 p.m.

7.5

CVSS3.1

CVE-2024-36972 - af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock.

In the Linux kernel, the following vulnerability has been resolved: af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock. Billy Jheng Bing-Jhong reported a race between __unix_gc() and queue_oob(). __unix_gc() tries to garbage-collect close()d inflight sockets, and then if the socketโ€ฆ

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 12:56 p.m.

7.8

CVSS3.1

CVE-2024-34332 -

An issue in SiSoftware SANDRA v31.66 (SANDRA.sys 15.18.1.1) and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API.

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.8

CVSS3.1

CVE-2024-37014 -

Langflow through 0.6.19 allows remote code execution if untrusted users are able to reach the "POST /api/v1/custom_component" endpoint and provide a Python script.

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: Nov. 21, 2024, 9:23 a.m.

7.8

CVSS3.1

CVE-2024-36971 - net: fix __dst_negative_advice() race

In the Linux kernel, the following vulnerability has been resolved: net: fix __dst_negative_advice() race __dst_negative_advice() does not enforce proper RCU rules when sk->dst_cache must be cleared, leading to possible UAF. RCU rules are that we must first clear sk->sk_dst_cache, then call dst_โ€ฆ

๐Ÿ“… Published: June 10, 2024, midnight ๐Ÿ”„ Last Modified: Nov. 5, 2025, 7:19 p.m.
Total resulsts: 349182
Page 9528 of 34,919
ยซ previous page ยป next page
Filters