NA - CVE-2024-9097 - ManageEngine Endpoint Central versions before...
ManageEngine Endpoint Central versions before 11.3.2440.09 are vulnerable to IDOR vulnerability which allows the attacker to change the username in the chat.
NA - CVE-2025-21117 - Dell Avamar, version 19.4 or later, contains an...
Dell Avamar, version 19.4 or later, contains an access token reuse vulnerability in the AUI. A low privileged local attacker could potentially exploit this vulnerability, leading to fully...
NA - CVE-2025-24372 - CKAN is an open-source DMS (data management...
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. Using a specially crafted file, a user could potentially upload a file containing code that when...
NA - CVE-2025-24803 - Mobile Security Framework (MobSF) is an...
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework. According to Apple's...
NA - CVE-2025-24804 - Mobile Security Framework (MobSF) is an...
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework. According to Apple's...
NA - CVE-2025-24805 - Mobile Security Framework (MobSF) is an...
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework. A local user with minimal...
NA - CVE-2020-36084 - SQL Injection vulnerability in SourceCodester...
SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote attackers to inject sql query in /elearning/delete_teacher_students.php?id= parameter via id field.
NA - CVE-2024-48394 - A Time-of-Check to Time-of-Use (TOCTOU)...
A Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in the driver of the NDD Print solution, which could allow an unprivileged user to exploit this flaw and gain SYSTEM-level...
NA - CVE-2024-54853 - A Stored Cross-Site Scripting (XSS)...
A Stored Cross-Site Scripting (XSS) vulnerability was identified affecting Skybox Change Manager versions 13.2.170 and earlier that allows remote authenticated users to store malicious payloads in...
NA - CVE-2024-57063 - A prototype pollution in the lib function of...
A prototype pollution in the lib function of php-date-formatter v1.3.6 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.