3.3

CVSS3.1

CVE-2024-56496 - IBM EntireX information disclosure

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.

๐Ÿ“… Published: Feb. 27, 2025, 2:48 p.m. ๐Ÿ”„ Last Modified: July 7, 2025, 6:21 p.m.

3.3

CVSS3.1

CVE-2024-56495 - IBM EntireX information disclosure

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.

๐Ÿ“… Published: Feb. 27, 2025, 2:48 p.m. ๐Ÿ”„ Last Modified: July 7, 2025, 6:22 p.m.

3.3

CVSS3.1

CVE-2024-56811 - IBM EntireX information disclosure

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.

๐Ÿ“… Published: Feb. 27, 2025, 2:48 p.m. ๐Ÿ”„ Last Modified: July 7, 2025, 6:14 p.m.

3.3

CVSS3.1

CVE-2024-56493 - IBM EntireX information disclosure

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.

๐Ÿ“… Published: Feb. 27, 2025, 2:47 p.m. ๐Ÿ”„ Last Modified: July 7, 2025, 6:25 p.m.

3.3

CVSS3.1

CVE-2024-56494 - IBM EntireX information disclosure

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.

๐Ÿ“… Published: Feb. 27, 2025, 2:47 p.m. ๐Ÿ”„ Last Modified: July 7, 2025, 6:23 p.m.

3.3

CVSS3.1

CVE-2024-56812 - IBM EntireX information disclosure

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.

๐Ÿ“… Published: Feb. 27, 2025, 2:47 p.m. ๐Ÿ”„ Last Modified: July 7, 2025, 6:13 p.m.

9.8

CVSS3.1

CVE-2024-13148 - SQLi in Yukseloglu Filter's B2B Login Platform

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yukseloglu Filter B2B Login Platform allows SQL Injection.This issue affects B2B Login Platform: before 16.01.2025.

๐Ÿ“… Published: Feb. 27, 2025, 2:22 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.6

CVSS3.1

CVE-2025-22280 - WordPress DefendWP Firewall Plugin <= 1.1.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in revmakx DefendWP Firewall defend-wp-firewall allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DefendWP Firewall: from n/a through <= 1.1.0.

๐Ÿ“… Published: Feb. 27, 2025, 2:04 p.m. ๐Ÿ”„ Last Modified: April 23, 2026, 1:58 p.m.

8.2

CVSS3.1

CVE-2024-9334 - Information Disclosure in E-Kent's Pallium Vehicle Tracking

Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent Pallium Vehicle Tracking allows Authentication Bypass.This issue affects Pallium Vehicle Tracking: before 17.10.2024.

๐Ÿ“… Published: Feb. 27, 2025, 1:54 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.4

CVSS4.0

CVE-2025-27154 - Spotipy's cache file, containing spotify auth token, is created with overly broad permissions

Spotipy is a lightweight Python library for the Spotify Web API. The `CacheHandler` class creates a cache file to store the auth token. Prior to version 2.25.1, the file created has `rw-r--r--` (644) permissions by default, when it could be locked down to `rw-------` (600) permissions. This leads tโ€ฆ

๐Ÿ“… Published: Feb. 27, 2025, 1:53 p.m. ๐Ÿ”„ Last Modified: April 7, 2025, 6:24 p.m.
Total resulsts: 346120
Page 6216 of 34,612
ยซ previous page ยป next page
Filters