NA - CVE-2024-13312 - Missing Authorization vulnerability in Drupal...
Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 11.8.0 before 12.3.10, from 12.4.0 before 12.4.9.
NA - CVE-2024-48806 - Buffer Overflow vulnerability in Neat Board NFC...
Buffer Overflow vulnerability in Neat Board NFC v.1.20240620.0015 allows a physically proximate attackers to escalate privileges via a crafted payload to the password field
NA - CVE-2024-55224 - An HTML injection vulnerability in Vaultwarden...
An HTML injection vulnerability in Vaultwarden prior to v1.32.5 allows attackers to execute arbitrary code via injecting a crafted payload into the username field of an e-mail message.
NA - CVE-2024-55225 - An issue in the component src/api/identity.rs...
An issue in the component src/api/identity.rs of Vaultwarden prior to v1.32.5 allows attackers to impersonate users, including Administrators, via a crafted authorization request.
NA - CVE-2023-28354 - An issue was discovered in Opsview Monitor...
An issue was discovered in Opsview Monitor Agent 6.8. An unauthenticated remote attacker can call check_nrpe against affected targets, specifying known NRPE plugins, which in default installations...
NA - CVE-2024-46464 - In PRIMX ZED Enterprise up to 2024.3, technical...
In PRIMX ZED Enterprise up to 2024.3, technical files stored in local folders with common user access can be manipulated to render the host computer unavailable or to execute programs with an...
NA - CVE-2024-56376 - A stored cross-site scripting (XSS)...
A stored cross-site scripting (XSS) vulnerability in the built-in messenger of REDCap 14.9.6 allows authenticated users to inject malicious scripts into the message field. When a user click on the...