๐จ CVE-2021-3773
A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.
๐@cveNotify
A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.
๐@cveNotify
๐จ CVE-2024-5154
A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal (โ../โ). This flaw allows the container to read and write to arbitrary files on the host system.
๐@cveNotify
A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal (โ../โ). This flaw allows the container to read and write to arbitrary files on the host system.
๐@cveNotify
๐จ CVE-2024-39036
SeaCMS v12.9 is vulnerable to Arbitrary File Read via admin_safe.php.
๐@cveNotify
SeaCMS v12.9 is vulnerable to Arbitrary File Read via admin_safe.php.
๐@cveNotify
GitHub
Arbitrary File Read in SeaCMS v12.9 ยท Issue #18 ยท seacms-net/CMS
Summary SeaCMS v12.9 has an arbitrary file read vulnerability in the admin/adminsafe.php file, allowing attackers to read system files after accessing the Website back end. Detail file_get_contents...
๐จ CVE-2024-40129
Open5GS v2.6.4 is vulnerable to Buffer Overflow. via /lib/pfcp/context.c.
๐@cveNotify
Open5GS v2.6.4 is vulnerable to Buffer Overflow. via /lib/pfcp/context.c.
๐@cveNotify
GitHub
[PFCP] Fixed Possible heap buffer overflow (#2585) ยท open5gs/open5gs@2fbc445
After examining the call stack and reading the source code, I found that
in /lib/core/ogs-pool.h line 152: (pool)->array[i] = i+1;
then in lib/pfcp/context.c line 78: pdr_random_to_index[ogs...
in /lib/core/ogs-pool.h line 152: (pool)->array[i] = i+1;
then in lib/pfcp/context.c line 78: pdr_random_to_index[ogs...
๐จ CVE-2024-40130
open5gs v2.6.4 is vulnerable to Buffer Overflow. via /lib/core/abts.c.
๐@cveNotify
open5gs v2.6.4 is vulnerable to Buffer Overflow. via /lib/core/abts.c.
๐@cveNotify
GitHub
Fixed dynamic-stack-buffer-overflow (#2578, #2577) ยท open5gs/open5gs@2f8ae91
Open5GS is a C-language Open Source implementation for 5G Core and EPC, i.e. the core network of LTE/NR network (Release-17) - Fixed dynamic-stack-buffer-overflow (#2578, #2577) ยท open5gs/open5gs@2f8ae91
๐จ CVE-2024-40392
SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 was discovered to contain a SQL injection vulnerability via the name parameter under addnew.php.
๐@cveNotify
SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 was discovered to contain a SQL injection vulnerability via the name parameter under addnew.php.
๐@cveNotify
GitHub
SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 addnew.phpโฆ
SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 addnew.php SQL injection vulnerability NAME OF AFFECTED PRODUCT(S) Pharmacy/M...
๐จ CVE-2024-40393
Online Clinic Management System In PHP With Free Source code v1.0 was discovered to contain a SQL injection vulnerability via the user parameter at login.php.
๐@cveNotify
Online Clinic Management System In PHP With Free Source code v1.0 was discovered to contain a SQL injection vulnerability via the user parameter at login.php.
๐@cveNotify
GitHub
SourceCodester Online Clinic Management System In PHP With Free Source code 1.0 login.php SQL injection ยท Issue #47 ยท CveSecLook/cve
SourceCodester Online Clinic Management System In PHP With Free Source code 1.0 login.php SQL injection NAME OF AFFECTED PRODUCT(S) Online Clinic Management System In PHP With Free Source code Vend...
๐จ CVE-2024-40394
Simple Library Management System Project Using PHP/MySQL v1.0 was discovered to contain an arbitrary file upload vulnerability via the component ajax.php.
๐@cveNotify
Simple Library Management System Project Using PHP/MySQL v1.0 was discovered to contain an arbitrary file upload vulnerability via the component ajax.php.
๐@cveNotify
GitHub
SourceCodester Simple Library Management System Project Using PHP/MySQL 1.0 ajax.php Unrestricted Upload ยท Issue #48 ยท CveSecLook/cve
SourceCodester Simple Library Management System Project Using PHP/MySQL 1.0 ajax.php Unrestricted Upload NAME OF AFFECTED PRODUCT(S) Simple Library Management System Project Using PHP/MySQL Vendor ...
๐จ CVE-2024-40503
An issue in Tenda AX12 v.16.03.49.18_cn+ allows a remote attacker to cause a denial of service via the Routing functionality and ICMP packet handling.
๐@cveNotify
An issue in Tenda AX12 v.16.03.49.18_cn+ allows a remote attacker to cause a denial of service via the Routing functionality and ICMP packet handling.
๐@cveNotify
Gist
ICMP Redirect attacks
ICMP Redirect attacks. GitHub Gist: instantly share code, notes, and snippets.
๐จ CVE-2024-40516
An issue in H3C Technologies Co., Limited H3C Magic RC3000 RC3000V100R009 allows a remote attacker to execute arbitrary code via the Routing functionality.
๐@cveNotify
An issue in H3C Technologies Co., Limited H3C Magic RC3000 RC3000V100R009 allows a remote attacker to execute arbitrary code via the Routing functionality.
๐@cveNotify
Gist
CVE-2024-40516
GitHub Gist: instantly share code, notes, and snippets.
๐จ CVE-2024-6492
Exposure of Sensitive Information in edge browser session proxy feature in Devolutions Remote Desktop Manager 2024.2.14.0 and earlier on Windows allows an attacker to intercept proxy credentials via a specially crafted website.
๐@cveNotify
Exposure of Sensitive Information in edge browser session proxy feature in Devolutions Remote Desktop Manager 2024.2.14.0 and earlier on Windows allows an attacker to intercept proxy credentials via a specially crafted website.
๐@cveNotify
Devolutions
advisories
Stay informed with Devolutions' latest security advisories on vulnerabilities, threats, and incident responses to enhance your cybersecurity posture.
๐จ CVE-2022-40705
An Improper Restriction of XML External Entity Reference vulnerability in RPCRouterServlet of Apache SOAP allows an attacker to read arbitrary files over HTTP. This issue affects Apache SOAP version 2.2 and later versions. It is unknown whether previous versions are also affected. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
๐@cveNotify
An Improper Restriction of XML External Entity Reference vulnerability in RPCRouterServlet of Apache SOAP allows an attacker to read arbitrary files over HTTP. This issue affects Apache SOAP version 2.2 and later versions. It is unknown whether previous versions are also affected. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
๐@cveNotify
๐จ CVE-2024-21686
This High severity Stored XSS vulnerability was introduced in versions 7.13 of Confluence Data Center and Server.
This Stored XSS vulnerability, with a CVSS Score of 7.3, allows an authenticated attacker to execute arbitrary HTML or JavaScript code on a victims browser which has high impact to confidentiality, high impact to integrity, no impact to availability, and requires user interaction.
Atlassian recommends that Confluence Data Center and Server customers upgrade to latest version, if you are unable to do so, upgrade your instance to one of the specified supported fixed versions listed on this CVE
See the release notes (https://confluence.atlassian.com/doc/confluence-release-notes-327.html). You can download the latest version of Confluence Data Center and Server from the download center (https://www.atlassian.com/software/confluence/download-archives).
This vulnerability was reported via our Bug Bounty program.
๐@cveNotify
This High severity Stored XSS vulnerability was introduced in versions 7.13 of Confluence Data Center and Server.
This Stored XSS vulnerability, with a CVSS Score of 7.3, allows an authenticated attacker to execute arbitrary HTML or JavaScript code on a victims browser which has high impact to confidentiality, high impact to integrity, no impact to availability, and requires user interaction.
Atlassian recommends that Confluence Data Center and Server customers upgrade to latest version, if you are unable to do so, upgrade your instance to one of the specified supported fixed versions listed on this CVE
See the release notes (https://confluence.atlassian.com/doc/confluence-release-notes-327.html). You can download the latest version of Confluence Data Center and Server from the download center (https://www.atlassian.com/software/confluence/download-archives).
This vulnerability was reported via our Bug Bounty program.
๐@cveNotify
Atlassian
Confluence Server Download Archives | Atlassian
Previous versions of Confluence Server are available for download. Some older versions may no longer be supported by Atlassian.
๐จ CVE-2024-40455
An arbitrary file deletion vulnerability in ThinkSAAS v3.7 allows attackers to delete arbitrary files via a crafted request.
๐@cveNotify
An arbitrary file deletion vulnerability in ThinkSAAS v3.7 allows attackers to delete arbitrary files via a crafted request.
๐@cveNotify
gold-textbook-8ff on Notion
ThinkSAAS administrator backend Arbitrary folder deletion vulnerability | Notion
system description
๐จ CVE-2024-40456
ThinkSAAS v3.7.0 was discovered to contain a SQL injection vulnerability via the name parameter at \system\action\update.php.
๐@cveNotify
ThinkSAAS v3.7.0 was discovered to contain a SQL injection vulnerability via the name parameter at \system\action\update.php.
๐@cveNotify
gold-textbook-8ff on Notion
ThinkSAAS administrator backend SQL injection | Notion
system description
๐จ CVE-2024-40505
**UNSUPPORTED WHEN ASSIGNED** Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component.
๐@cveNotify
**UNSUPPORTED WHEN ASSIGNED** Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component.
๐@cveNotify
๐จ CVE-2024-40515
An issue in SHENZHEN TENDA TECHNOLOGY CO.,LTD Tenda AX2pro V16.03.29.48_cn allows a remote attacker to execute arbitrary code via the Routing functionality.
๐@cveNotify
An issue in SHENZHEN TENDA TECHNOLOGY CO.,LTD Tenda AX2pro V16.03.29.48_cn allows a remote attacker to execute arbitrary code via the Routing functionality.
๐@cveNotify
Gist
CVE-2024-40515
GitHub Gist: instantly share code, notes, and snippets.
๐จ CVE-2022-34965
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an arbitrary file upload vulnerability via the component /ossn/administrator/com_installer. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. Note: The project owner believes this is intended behavior of the application as it only allows authenticated admins to upload files.
๐@cveNotify
OpenTeknik LLC OSSN OPEN SOURCE SOCIAL NETWORK v6.3 LTS was discovered to contain an arbitrary file upload vulnerability via the component /ossn/administrator/com_installer. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. Note: The project owner believes this is intended behavior of the application as it only allows authenticated admins to upload files.
๐@cveNotify
GitHub
Release OSSN 6.3 LTS ยท opensource-socialnetwork/opensource-socialnetwork
OSSN - OPEN SOURCE SOCIAL NETWORK v6.3 LTS
[E] Allow all callables for extend view #2024
[E] avoiding unnecessary handling of extra space at comment start #2029
[B] skip friend access check if pag...
[E] Allow all callables for extend view #2024
[E] avoiding unnecessary handling of extra space at comment start #2029
[B] skip friend access check if pag...
๐จ CVE-2022-38625
Patlite NH-FB v1.46 and below was discovered to contain insufficient firmware validation during the upgrade firmware file upload process. This vulnerability allows authenticated attackers to create and upload their own custom-built firmware and inject malicious code. NOTE: the vendor's position is that this is a design choice, not a vulnerability
๐@cveNotify
Patlite NH-FB v1.46 and below was discovered to contain insufficient firmware validation during the upgrade firmware file upload process. This vulnerability allows authenticated attackers to create and upload their own custom-built firmware and inject malicious code. NOTE: the vendor's position is that this is a design choice, not a vulnerability
๐@cveNotify