Szolgáltatóknak | HunCERT csoport

2024. okt. 4.

Riasztás

NA - CVE-2024-43685 - Improper Authentication vulnerability in...

Improper Authentication vulnerability in Microchip TimeProvider 4100 (login modules) allows Session Hijacking.This issue affects TimeProvider 4100: from 1.0 before 2.4.7.

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-43686 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Microchip TimeProvider 4100 (data plot modules) allows Reflected XSS.This...

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-43687 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Microchip TimeProvider 4100 (banner config modules) allows Cross-Site...

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-47764 - cookie is a basic HTTP cookie parser and...

cookie is a basic HTTP cookie parser and serializer for HTTP servers. The cookie name could be used to set other fields of the cookie, resulting in an unexpected cookie value. A similar escape can...

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-7801 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Microchip TimeProvider 4100 (Data plot modules) allows SQL Injection.This issue...

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-9054 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Microchip...

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-37868 - File Upload vulnerability in Itsourcecode...

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote attacker to execute arbitrary code via the "sendreply.php" file, and the uploaded file was received...

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-37869 - File Upload vulnerability in Itsourcecode...

File Upload vulnerability in Itsourcecode Online Discussion Forum Project v.1.0 allows a remote attacker to execute arbitrary code via the "poster.php" file, and the uploaded file was received...

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-47910 - An issue was discovered in SonarSource...

An issue was discovered in SonarSource SonarQube before 9.9.5 LTA and 10.x before 10.5. A SonarQube user with the Administrator role can modify an existing configuration of a GitHub integration to...

security-database.com

Tovább

2024. okt. 4.

Riasztás

NA - CVE-2024-47911 - In SonarSource SonarQube 10.4 through 10.5...

In SonarSource SonarQube 10.4 through 10.5 before 10.6, a vulnerability was discovered in the authorizations/group-memberships API endpoint that allows SonarQube users with the administrator role...

security-database.com

Tovább

Telefon:	+36 1 279 6222 (09:00-16:00)
Email:	@email
Cím:	1111 Budapest, Kende u. 13-17.