Szolgáltatóknak | HunCERT csoport

2025. jan. 9.

Riasztás

NA - CVE-2024-13284 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Gutenberg allows Cross Site Request Forgery.This issue affects Gutenberg: from 0.0.0 before 2.13.0, from 3.0.0 before 3.0.5.

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-13285 - Vulnerability in Drupal wkhtmltopdf.This issue...

Vulnerability in Drupal wkhtmltopdf.This issue affects wkhtmltopdf: *.*.

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-13286 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal SVG Embed allows Cross-Site Scripting (XSS).This issue affects SVG Embed: from...

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-13287 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Views SVG Animation allows Cross-Site Scripting (XSS).This issue affects Views...

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-42898 - A cross-site scripting (XSS) vulnerability in...

A cross-site scripting (XSS) vulnerability in Nagios XI 2024R1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter in the Account...

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-46505 - Infoblox BloxOne v2.4 was discovered to contain...

Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities.

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-54724 - PHPYun before 7.0.2 is vulnerable to code...

PHPYun before 7.0.2 is vulnerable to code execution through backdoor-restricted arbitrary file writing and file inclusion.

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-54761 - BigAnt Office Messenger 5.6.06 is vulnerable to...

BigAnt Office Messenger 5.6.06 is vulnerable to SQL Injection via the 'dev_code' parameter.

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-54762 - Ruoyi v.4.7.9 and before contains an...

Ruoyi v.4.7.9 and before contains an authenticated SQL injection vulnerability. This is because the filterKeyword method does not completely filter SQL injection keywords, resulting in the risk of...

security-database.com

Tovább

2025. jan. 9.

Riasztás

NA - CVE-2024-54887 - TP-Link TL-WR940N V3 and V4 with firmware...

TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier contain a buffer overflow via the dnsserver1 and dnsserver2 parameters at /userRpm/Wan6to4TunnelCfgRpm.htm. This vulnerability allows an...

security-database.com

Tovább

Telefon:	+36 1 279 6222 (09:00-16:00)
Email:	@email
Cím:	1111 Budapest, Kende u. 13-17.