5.3

CVSS4.0

CVE-2024-5355 - anji-plus AJ-Report IGroovyHandler command injection

A vulnerability, which was classified as critical, has been found in anji-plus AJ-Report up to 1.4.1. This issue affects the function IGroovyHandler. The manipulation leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The …

πŸ“… Published: May 26, 2024, 6 a.m. πŸ”„ Last Modified: March 1, 2025, 1:48 a.m.

5.3

CVSS4.0

CVE-2024-5354 - anji-plus AJ-Report detailByCode information disclosure

A vulnerability classified as problematic was found in anji-plus AJ-Report up to 1.4.1. This vulnerability affects unknown code of the file /reportShare/detailByCode. The manipulation of the argument shareToken leads to information disclosure. The attack can be initiated remotely. The exploit has b…

πŸ“… Published: May 26, 2024, 4:31 a.m. πŸ”„ Last Modified: March 1, 2025, 1:48 a.m.

5.3

CVSS4.0

CVE-2024-5353 - anji-plus AJ-Report ZIP File decompress path traversal

A vulnerability classified as critical has been found in anji-plus AJ-Report up to 1.4.1. This affects the function decompress of the component ZIP File Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public an…

πŸ“… Published: May 26, 2024, 4 a.m. πŸ”„ Last Modified: March 1, 2025, 2:33 a.m.

5.3

CVSS4.0

CVE-2024-5352 - anji-plus AJ-Report validationRules deserialization

A vulnerability was found in anji-plus AJ-Report up to 1.4.1. It has been rated as critical. Affected by this issue is the function validationRules of the component com.anjiplus.template.gaea.business.modules.datasetparam.controller.DataSetParamController#verification. The manipulation leads to des…

πŸ“… Published: May 26, 2024, 12:31 a.m. πŸ”„ Last Modified: March 1, 2025, 2:33 a.m.

5.3

CVSS4.0

CVE-2024-5351 - anji-plus AJ-Report Javascript getValueFromJs deserialization

A vulnerability was found in anji-plus AJ-Report up to 1.4.1. It has been declared as critical. Affected by this vulnerability is the function getValueFromJs of the component Javascript Handler. The manipulation leads to deserialization. The attack can be launched remotely. The exploit has been dis…

πŸ“… Published: May 26, 2024, midnight πŸ”„ Last Modified: March 1, 2025, 2:33 a.m.

5.3

CVSS4.0

CVE-2024-5350 - anji-plus AJ-Report pageList sql injection

A vulnerability was found in anji-plus AJ-Report up to 1.4.1. It has been classified as critical. Affected is the function pageList of the file /pageList. The manipulation of the argument p leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the p…

πŸ“… Published: May 25, 2024, 10:31 p.m. πŸ”„ Last Modified: March 1, 2025, 2:33 a.m.

5.1

CVSS4.0

CVE-2024-5340 - Ruijie RG-UAC sub_commit.php os command injection

A vulnerability was found in Ruijie RG-UAC up to 20240516. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view/vpn/autovpn/sub_commit.php. The manipulation of the argument key leads to os command injection. The attack may be launched remotely. The e…

πŸ“… Published: May 25, 2024, 9:31 p.m. πŸ”„ Last Modified: Aug. 21, 2025, 6:07 p.m.

0.0

CVE-2024-5388 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: May 25, 2024, 7:48 p.m. πŸ”„ Last Modified: June 3, 2024, 7:15 p.m.

0.0

CVE-2024-5387 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: May 25, 2024, 7:44 p.m. πŸ”„ Last Modified: June 3, 2024, 7:15 p.m.

7.1

CVSS3.1

CVE-2024-30056 - Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

πŸ“… Published: May 25, 2024, 5:12 p.m. πŸ”„ Last Modified: May 3, 2025, 12:06 a.m.
Total resulsts: 349182
Page 9670 of 34,919
Β« previous page Β» next page
Filters