5.5

CVSS3.1

CVE-2024-57673 -

An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology Manager module and Linkdiscovery module

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: April 23, 2025, 9:57 p.m.

4.8

CVSS3.1

CVE-2022-40490 -

Tiny File Manager v2.4.7 and below was discovered to contain a Cross Site Scripting (XSS) vulnerability. This vulnerability allows attackers to execute arbitrary code via a crafted payload injected into the name of an uploaded or already existing file.

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: Dec. 31, 2025, 7:40 p.m.

7.3

CVSS3.1

CVE-2024-57426 -

NetMod VPN Client 5.3.1 is vulnerable to DLL injection, allowing an attacker to execute arbitrary code by placing a malicious DLL in a directory where the application loads dependencies. This vulnerability arises due to the improper validation of dynamically loaded libraries.

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: Feb. 11, 2025, 10:15 p.m.

8.8

CVSS3.1

CVE-2024-57668 -

In Code-projects Shopping Portal v1.0, the insert-product.php page has an arbitrary file upload vulnerability.

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: Oct. 23, 2025, 8:06 p.m.

5.3

CVSS3.1

CVE-2024-57392 -

Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service (DoS) on the FTP service by sending a maliciously crafted message to the ProFTPD service port.

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: March 2, 2025, 10:15 p.m.

9.8

CVSS3.1

CVE-2025-22992 -

A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project >= 11.6.9. The vulnerability is caused by improper handling of user-supplied input in the data query parameter, allowing attackers to execute arbitrary SQL commands under specific conditions.

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: July 30, 2025, 6:12 p.m.

7.5

CVSS3.1

CVE-2024-56889 -

Incorrect access control in the endpoint /admin/m_delete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter.

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: April 18, 2025, 2:06 a.m.

7.5

CVSS3.1

CVE-2024-36558 -

Forever KidsWatch Call Me KW-50 R36_YDR_A3PW_GM7S_V1.0_2019_07_15_16.19.24_cob_h suffers from Cleartext Transmission of Sensitive Information due to lack of encryption in device-server communication.

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: March 19, 2025, 3:15 p.m.

7.3

CVSS3.1

CVE-2025-23094 -

The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11 R0.22.1, V10 R1.54.0 through V10 R1.54.1, and V10 R1.42.6 and earlier could allow an unauthenticated attacker to conduct a command injection attack due to insufficient parameter sanitization. A success…

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: Feb. 11, 2025, 10:15 p.m.

8.8

CVSS3.1

CVE-2024-55241 -

An issue in deep-diver LLM-As-Chatbot before commit 99c2c03 allows a remote attacker to execute arbitrary code via the modelsbyom.py component.

πŸ“… Published: Feb. 6, 2025, midnight πŸ”„ Last Modified: Feb. 11, 2025, 3:15 p.m.
Total resulsts: 343923
Page 6308 of 34,393
Β« previous page Β» next page
Filters