Critical - CVE-2024-6743 - AguardNet's Space Management System does...
AguardNet's Space Management System does not properly validate user input, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database...
Critical - CVE-2024-6744 - The SMTP Listener of Secure Email Gateway from...
The SMTP Listener of Secure Email Gateway from Cellopoint does not properly validate user input, leading to a Buffer Overflow vulnerability. An unauthenticated remote attacker can exploit this...
NA - CVE-2023-41916 -
In Apache Linkis =1.4.0, due to the lack of...
In Apache Linkis =1.4.0, due to the lack of effective filtering of parameters, an attacker configuring malicious Mysql JDBC parameters in the DataSource Manager Module will trigger arbitrary file...
NA - CVE-2024-23794 - An incorrect privilege assignment vulnerability...
An incorrect privilege assignment vulnerability in the inline editing functionality of OTRS can lead to privilege escalation. This flaw allows an agent with read-only permissions to gain full...
NA - CVE-2024-6540 - Improper filtering of fields when using the...
Improper filtering of fields when using the export function in the ticket overview of the external interface in OTRS could allow an authorized user to download a list of tickets containing...
Medium - CVE-2024-6740 - Openfind's Mail2000 does not properly...
Openfind's Mail2000 does not properly validate email atachments, allowing unauthenticated remote attackers to inject JavaScript code within the attachment and perform Stored Cross-site...