Riasztások
2024. Dec. 30.
NA - CVE-2024-47919 - Tiki Wiki CMS – CWE-78: Improper Neutralization...
Tiki Wiki CMS – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
2024. Dec. 30.
NA - CVE-2024-47920 - Tiki Wiki CMS – CWE-79: Improper Neutralization...
Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2024. Dec. 30.
NA - CVE-2024-47921 - Smadar SPS – CWE-327: Use of a Broken or Risky...
Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm
2024. Dec. 30.
NA - CVE-2024-47922 - Priority – CWE-200: Exposure of Sensitive...
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
2024. Dec. 30.
NA - CVE-2024-47923 - Mashov – CWE-200: Exposure of Sensitive...
Mashov – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
2024. Dec. 30.
NA - CVE-2024-47924 - Boa web server – CWE-79: Improper...
Boa web server – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2024. Dec. 30.
NA - CVE-2024-47925 - Tecnick TCExam – Multiple CWE-79: Improper...
Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2024. Dec. 30.
NA - CVE-2024-47926 - Tecnick TCExam – CWE-89: Improper...
Tecnick TCExam – CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
2024. Dec. 30.
NA - CVE-2024-12993 - Infinix devices contain a pre-loaded...
Infinix devices contain a pre-loaded "com.rlk.weathers" application, that exposes an unsecured content provider. An attacker can communicate with the provider and reveal the user’s location without...
2024. Dec. 30.
NA - CVE-2024-10044 - A Server-Side Request Forgery (SSRF)...
A Server-Side Request Forgery (SSRF) vulnerability exists in the POST /worker_generate_stream API endpoint of the Controller API Server in lm-sys/fastchat, as of commit...