6.3

CVSS3.1

CVE-2024-33752 -

An arbitrary file upload vulnerability exists in emlog pro 2.3.0 and pro 2.3.2 at admin/views/plugin.php that could be exploited by a remote attacker to submit a special request to upload a malicious file to execute arbitrary code.

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: June 11, 2025, 12:06 p.m.

4.3

CVSS3.1

CVE-2024-26312 -

Archer Platform 6 before 2024.03 contains a sensitive information disclosure vulnerability. An authenticated attacker could potentially obtain access to sensitive information via a popup warning message.

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: March 18, 2025, 5:27 p.m.

7.3

CVSS3.1

CVE-2024-34089 -

An issue was discovered in Archer Platform 6 before 2024.04. There is a stored cross-site scripting (XSS) vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data store. When vic…

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: March 28, 2025, 7:15 p.m.

9.8

CVSS3.1

CVE-2024-34532 -

A SQL injection vulnerability in Yvan Dotet PostgreSQL Query Deluxe module (aka query_deluxe) 17.x before 17.0.0.4 allows a remote attacker to gain privileges via the query parameter to models/querydeluxe.py:QueryDeluxe::get_result_from_query.

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

2.9

CVSS3.1

CVE-2024-4568 - Stack overflow in Xpdf 4.05 due to object loop in PDF resources

In Xpdf 4.05 (and earlier), a PDF object loop in the PDF resources leads to infinite recursion and a stack overflow.

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: Jan. 29, 2025, 4:12 p.m.

5.5

CVSS3.1

CVE-2024-34472 -

An issue was discovered in HSC Mailinspector 5.2.17-3 through v.5.2.18. An authenticated blind SQL injection vulnerability exists in the mliRealtimeEmails.php file. The ordemGrid parameter in a POST request to /mailinspector/mliRealtimeEmails.php does not properly sanitize input, allowing an authen…

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: Nov. 25, 2025, 3:15 p.m.

7.5

CVSS3.1

CVE-2024-4437 - Etcd: incomplete fix for cve-2021-44716 in openstack platform

The etcd package distributed with the Red Hat OpenStack platform has an incomplete fix for CVE-2021-44716. This issue occurs because the etcd package in the Red Hat OpenStack platform is using http://golang.org/x/net/http2 instead of the one provided by Red Hat Enterprise Linux versions, meaning it…

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2024-34251 -

An out-of-bound memory read vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which allows a remote attacker to cause a denial of service via the "block_type_get_arity" function in core/iwasm/interpreter/wasm.h.

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: June 13, 2025, 1:09 p.m.

9.8

CVSS3.1

CVE-2024-33408 -

A SQL injection vulnerability in /model/get_classroom.php in campcodes Complete Web-Based School Management System 1.0 allows attacker to execute arbitrary SQL commands via the id parameter.

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: March 25, 2025, 5:20 p.m.

9.1

CVSS3.1

CVE-2024-33110 -

D-Link DIR-845L router v1.01KRb03 and before is vulnerable to Permission Bypass via the getcfg.php component.

πŸ“… Published: May 6, 2024, midnight πŸ”„ Last Modified: May 21, 2025, 1:02 p.m.
Total resulsts: 349182
Page 9980 of 34,919
Β« previous page Β» next page
Filters