Riasztások
2024. dec. 7.
Medium - CVE-2024-47107 - IBM QRadar SIEM 7.5 is vulnerable to stored...
IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended...
2024. dec. 7.
NA - CVE-2024-53473 - WeGIA 3.2.0 before 3998672 does not verify...
WeGIA 3.2.0 before 3998672 does not verify permission to change a password.
2024. dec. 6.
NA - CVE-2024-6156 - Mark Laing discovered that LXD's PKI mode,...
Mark Laing discovered that LXD's PKI mode, until version 5.21.2, could be bypassed if the client's certificate was present in the trust store.
2024. dec. 6.
NA - CVE-2024-6219 - Mark Laing discovered in LXD's PKI mode,...
Mark Laing discovered in LXD's PKI mode, until version 5.21.1, that a restricted certificate could be added to the trust store with its restrictions not honoured.
2024. dec. 6.
NA - CVE-2024-11149 - In OpenBSD 7.4 before errata 014, vmm(4) did...
In OpenBSD 7.4 before errata 014, vmm(4) did not restore GDTR limits properly on Intel (VMX) CPUs.
2024. dec. 6.
Medium - CVE-2024-49041 - Microsoft Edge (Chromium-based) Spoofing...
Microsoft Edge (Chromium-based) Spoofing Vulnerability
2024. dec. 6.
High - CVE-2024-10247 - The Video Gallery – Best WordPress YouTube...
The Video Gallery – Best WordPress YouTube Gallery Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the orderby parameter in all versions up to, and including, 2.4.2 due to...
2024. dec. 6.
Medium - CVE-2024-10836 - The Flixita theme for WordPress is vulnerable...
The Flixita theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 1.0.82 due to insufficient input sanitization and output...