NA - CVE-2024-29869 - Hive creates a credentials file to a temporary...
Hive creates a credentials file to a temporary directory in the file system with permissions 644 by default when the file permissions are not set explicitly. Any unauthorized user having access to...
NA - CVE-2024-55968 - An issue was discovered in DTEX DEC-M (DTEX...
An issue was discovered in DTEX DEC-M (DTEX Forwarder) 6.1.1. The com.dtexsystems.helper service, responsible for handling privileged operations within the macOS DTEX Event Forwarder agent, fails...
NA - CVE-2024-57514 - The TP-Link Archer A20 v3 router is vulnerable...
The TP-Link Archer A20 v3 router is vulnerable to Cross-site Scripting (XSS) due to improper handling of directory listing paths in the web interface. When a specially crafted URL is visited, the...
Low - CVE-2025-0785 - A vulnerability was found in ESAFENET CDG V5...
A vulnerability was found in ESAFENET CDG V5 and classified as problematic. This issue affects some unknown processing of the file /SysConfig.jsp. The manipulation of the argument help leads to...
NA - CVE-2025-0786 - A vulnerability was found in ESAFENET CDG V5....
A vulnerability was found in ESAFENET CDG V5. It has been classified as critical. Affected is an unknown function of the file /appDetail.jsp. The manipulation of the argument flowId leads to sql...
NA - CVE-2025-0787 - A vulnerability was found in ESAFENET CDG V5....
A vulnerability was found in ESAFENET CDG V5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /appDetail.jsp. The manipulation of the...
NA - CVE-2024-48310 - AutoLib Software Systems OPAC v20.10 was...
AutoLib Software Systems OPAC v20.10 was discovered to have multiple API keys exposed within the source code. Attackers may use these keys to access the backend API or other sensitive information.
NA - CVE-2024-56529 - Mailcow through 2024-11b has a session fixation...
Mailcow through 2024-11b has a session fixation vulnerability in the web panel. It allows remote attackers to set a session identifier when HSTS is disabled on a victim's browser. After a user...