Ugrás a tartalomra

Riasztások

2024. Nov. 14.

NA - CVE-2024-7404 - An issue was discovered in GitLab CE/EE...

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 prior to 17.3.7, starting from 17.4 prior to 17.4.4 and starting from 17.5 prior to 17.5.2, which could have...
security-database.com
Tovább
2024. Nov. 14.

NA - CVE-2024-8648 - An issue has been discovered in GitLab CE/EE...

An issue has been discovered in GitLab CE/EE affecting all versions from 16 before 17.3.7, 17.4 before 17.4.4, and 17.5 before 17.5.2. The vulnerability could allow an attacker to inject malicious...
security-database.com
Tovább
2024. Nov. 14.

High - CVE-2024-10962 - The Migration, Backup, Staging – WPvivid plugin...

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 0.9.107 via deserialization of untrusted input in the...
security-database.com
Tovább
2024. Nov. 14.

NA - CVE-2024-11208 - A vulnerability was found in Apereo CAS 6.6 and...

A vulnerability was found in Apereo CAS 6.6 and classified as problematic. Affected by this issue is some unknown functionality of the file /login?service. The manipulation leads to session...
security-database.com
Tovább
2024. Nov. 14.

NA - CVE-2024-11209 - A vulnerability was found in Apereo CAS 6.6. It...

A vulnerability was found in Apereo CAS 6.6. It has been classified as critical. This affects an unknown part of the file /login?service of the component 2FA. The manipulation leads to improper...
security-database.com
Tovább
2024. Nov. 14.

NA - CVE-2024-11215 - Absolute path traversal (incorrect restriction...

Absolute path traversal (incorrect restriction of a path to a restricted directory) vulnerability in the EasyPHP web server, affecting version 14.1. This vulnerability could allow remote users to...
security-database.com
Tovább
2024. Nov. 14.

NA - CVE-2024-50839 - A Stored Cross-Site Scripting (XSS)...

A Stored Cross-Site Scripting (XSS) vulnerability was found in /lms/admin/add_subject.php page in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to...
security-database.com
Tovább
2024. Nov. 14.

NA - CVE-2024-50840 - A Stored Cross-Site Scripting (XSS)...

A Stored Cross-Site Scripting (XSS) vulnerability was found in /lms/admin/class.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute...
security-database.com
Tovább
2024. Nov. 14.

NA - CVE-2024-50841 - A Stored Cross-Site Scripting (XSS)...

A Stored Cross-Site Scripting (XSS) vulnerability was found in /lms/admin/calendar_of_events.php in KASHIPARA E-learning Management System pProject 1.0. This vulnerability allows remote attackers...
security-database.com
Tovább
2024. Nov. 14.

NA - CVE-2024-50842 - A Stored Cross-Site Scripting (XSS)...

A Stored Cross-Site Scripting (XSS) vulnerability was found in /lms/admin/school_year.php of KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to...
security-database.com
Tovább
Nyelv