Szolgáltatóknak | HunCERT csoport

2024. dec. 6.

Riasztás

Medium - CVE-2024-11321 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hi e-learning Learning Management System (LMS) allows Reflected XSS.This issue...

security-database.com

Tovább

2024. dec. 6.

Riasztás

NA - CVE-2024-21571 - Snyk has identified a remote code execution...

Snyk has identified a remote code execution (RCE) vulnerability in all versions of Code Agent. The vulnerability enables an attacker to execute arbitrary code within the Code Agent container....

security-database.com

Tovább

2024. dec. 6.

Riasztás

Medium - CVE-2024-4633 - The Slider and Carousel slider by Depicter...

The Slider and Carousel slider by Depicter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘addExtraMimeType’ function in versions up to, and including, 3.2.1 due to...

security-database.com

Tovább

2024. dec. 6.

Riasztás

NA - CVE-2024-51615 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Owen Cutajar & Hyder Jaffari WordPress Auction Plugin allows SQL Injection.This issue...

security-database.com

Tovább

2024. dec. 6.

Riasztás

NA - CVE-2024-51815 - Improper Control of Generation of Code...

Improper Control of Generation of Code ('Code Injection') vulnerability in WP Sharks s2Member Pro allows Code Injection.This issue affects s2Member Pro: from n/a through 241114.

security-database.com

Tovább

2024. dec. 6.

Riasztás

Critical - CVE-2024-52335 - A vulnerability has been identified in...

A vulnerability has been identified in syngo.plaza VB30E (All versions < VB30E_HF05). The affected application do not properly sanitize input data before sending it to the SQL server. This could...

security-database.com

Tovább

2024. dec. 6.

Riasztás

NA - CVE-2024-53794 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LOOS,Inc. Arkhe Blocks allows Stored XSS.This issue affects Arkhe Blocks: from n/a...

security-database.com

Tovább

2024. dec. 6.

Riasztás

NA - CVE-2024-53795 - Missing Authorization vulnerability in Andy...

Missing Authorization vulnerability in Andy Moyle Church Admin allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Church Admin: from n/a through 5.0.8.

security-database.com

Tovább

2024. dec. 6.

Riasztás

NA - CVE-2024-53796 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themesflat Themesflat Addons For Elementor allows DOM-Based XSS.This issue affects...

security-database.com

Tovább

2024. dec. 6.

Riasztás

NA - CVE-2024-53797 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in The Beaver Builder Team Beaver Builder allows Stored XSS.This issue affects Beaver...

security-database.com

Tovább

Telefon:	+36 1 279 6222 (09:00-16:00)
Email:	@email
Cím:	1111 Budapest, Kende u. 13-17.