🚨 CVE-2024-7311
A vulnerability was found in code-projects Online Bus Reservation Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file register.php. The manipulation of the argument Email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-273203.
🎖@cveNotify
A vulnerability was found in code-projects Online Bus Reservation Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file register.php. The manipulation of the argument Email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-273203.
🎖@cveNotify
GitHub
code-projects Online Bus Reservation Site Using PHP With Source Code v1.0 register.php SQL injection · Issue #1 · 23588hk/cve
code-projects Online Bus Reservation Site Using PHP With Source Code v1.0 register.php SQL injection NAME OF AFFECTED PRODUCT(S) Online Bus Reservation Site Using PHP With Source Code Vendor Homepa...
🚨 CVE-2017-3772
A vulnerability was reported in Lenovo PC Manager versions prior to 2.6.40.3154 that could allow an attacker to cause a system reboot.
🎖@cveNotify
A vulnerability was reported in Lenovo PC Manager versions prior to 2.6.40.3154 that could allow an attacker to cause a system reboot.
🎖@cveNotify
iknow.lenovo.com.cn
安全公告:LEN-20491 在 IOCTL 0x9C402000 上的无效输入导致 Lenovo PC Manager 2.6 系统重新启动-联想知识库
为您提供联想lenovo笔记本的常见问题原因分析、解决方案和操作指导。涉及新电脑首次开机设置和使用,预装系统和预装软件等问题处理。方案涉及产品包括ideapad笔记本、yoga笔记本、小新笔记本、xiaoxin笔记本、昭阳笔记本、扬天笔记本、拯救者笔记本,miix系列笔记本、Flex系列笔记本等。
🚨 CVE-2019-6197
A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.
🎖@cveNotify
A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.
🎖@cveNotify
🚨 CVE-2024-41481
Typora before 1.9.3 Markdown editor has a cross-site scripting (XSS) vulnerability via the Mermaid component.
🎖@cveNotify
Typora before 1.9.3 Markdown editor has a cross-site scripting (XSS) vulnerability via the Mermaid component.
🎖@cveNotify
support.typora.io
Typora 1.9
New Code Block Math Improvements EPub Export Block Diagram Header Anchor Spec Other Improvements Fix New Code Block Math You enable Code Block Math in Preferences Panel → Markdown → Code Block Math to enable support for Gitlab / GitHub style math block (…
🚨 CVE-2024-41482
Typora before 1.9.3 Markdown editor has a cross-site scripting (XSS) vulnerability via the MathJax component.
🎖@cveNotify
Typora before 1.9.3 Markdown editor has a cross-site scripting (XSS) vulnerability via the MathJax component.
🎖@cveNotify
support.typora.io
Typora 1.9
New Code Block Math Improvements EPub Export Block Diagram Header Anchor Spec Other Improvements Fix New Code Block Math You enable Code Block Math in Preferences Panel → Markdown → Code Block Math to enable support for Gitlab / GitHub style math block (…
🚨 CVE-2024-6758
Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a remote attacker with low privileges to save unauthorized protection assignments.
🎖@cveNotify
Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a remote attacker with low privileges to save unauthorized protection assignments.
🎖@cveNotify
🚨 CVE-2024-29151
Rocket.Chat.Audit through 5ad78e8 depends on filecachetools, which does not exist in PyPI.
🎖@cveNotify
Rocket.Chat.Audit through 5ad78e8 depends on filecachetools, which does not exist in PyPI.
🎖@cveNotify
GitHub
Rocket.Chat.Audit/requirements.txt at 5ad78e8017a9e190602e8257c22500ded0d931a9 · RocketChat/Rocket.Chat.Audit
Audits Rocket.Chat communications for compliance. Contribute to RocketChat/Rocket.Chat.Audit development by creating an account on GitHub.
🚨 CVE-2024-30622
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the mitInterface parameter from fromAddressNat function.
🎖@cveNotify
Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the mitInterface parameter from fromAddressNat function.
🎖@cveNotify
🚨 CVE-2024-31807
TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE) vulnerability via the hostTime parameter in the NTPSyncWithHost function.
🎖@cveNotify
TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE) vulnerability via the hostTime parameter in the NTPSyncWithHost function.
🎖@cveNotify
GitHub
CVE-vulns/TOTOLINK/EX200/CI_2_NTPSyncWithHost/CI.md at main · 4hsienyang/CVE-vulns
CVE-vulns. Contribute to 4hsienyang/CVE-vulns development by creating an account on GitHub.
🚨 CVE-2024-37635
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiBasicCfg
🎖@cveNotify
TOTOLINK A3700R V9.1.2u.6165_20211012 was discovered to contain a stack overflow via ssid in the function setWiFiBasicCfg
🎖@cveNotify
GitHub
IOT-vuln-reports/TOTOLINK/A3700R/setWiFiBasicCfg/README.md at main · s4ndw1ch136/IOT-vuln-reports
Contribute to s4ndw1ch136/IOT-vuln-reports development by creating an account on GitHub.
🚨 CVE-2024-37129
Dell Inventory Collector, versions prior to 12.3.0.6 contains a Path Traversal vulnerability. A local authenticated malicious user could potentially exploit this vulnerability, leading to arbitrary code execution on the system.
🎖@cveNotify
Dell Inventory Collector, versions prior to 12.3.0.6 contains a Path Traversal vulnerability. A local authenticated malicious user could potentially exploit this vulnerability, leading to arbitrary code execution on the system.
🎖@cveNotify
🚨 CVE-2019-6198
A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.
🎖@cveNotify
A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.
🎖@cveNotify
🚨 CVE-2022-4002
A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially crafted API request.
🎖@cveNotify
A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially crafted API request.
🎖@cveNotify
Motorola
Motorola Q14 Mesh Router Vulnerabilities| Motorola Support US
Visit the customer support page to view user guides, FAQs, bluetooth pairing, software downloads, drivers, tutorials and to get repair and contact us information.Motorola Q14 Mesh Router Vulnerabilities
🚨 CVE-2022-4003
A denial-of-service vulnerability could allow an authenticated user to trigger an internal service restart via a specially crafted API request.
🎖@cveNotify
A denial-of-service vulnerability could allow an authenticated user to trigger an internal service restart via a specially crafted API request.
🎖@cveNotify
Motorola
Motorola Q14 Mesh Router Vulnerabilities| Motorola Support US
Visit the customer support page to view user guides, FAQs, bluetooth pairing, software downloads, drivers, tutorials and to get repair and contact us information.Motorola Q14 Mesh Router Vulnerabilities
🚨 CVE-2023-1577
A path hijacking vulnerability was reported in Lenovo Driver Manager prior to version 3.1.1307.1308 that could allow a local user to execute code with elevated privileges.
🎖@cveNotify
A path hijacking vulnerability was reported in Lenovo Driver Manager prior to version 3.1.1307.1308 that could allow a local user to execute code with elevated privileges.
🎖@cveNotify
🚨 CVE-2024-41240
A Reflected Cross Site Scripting (XSS) vulnerability was found in " /smsa/teacher_login.php" in Kashipara Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary code via the "error" parameter.
🎖@cveNotify
A Reflected Cross Site Scripting (XSS) vulnerability was found in " /smsa/teacher_login.php" in Kashipara Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary code via the "error" parameter.
🎖@cveNotify
GitHub
CVE_Writeup/Kashipara/Responsive School Management System v3.2.0/Reflected XSS - Teacher.pdf at main · takekaramey/CVE_Writeup
Contribute to takekaramey/CVE_Writeup development by creating an account on GitHub.
🚨 CVE-2024-6158
The Category Posts Widget WordPress plugin before 4.9.17, term-and-category-based-posts-widget WordPress plugin before 4.9.13 does not validate and escape some of its "Category Posts" widget settings before outputting them back in a page/post where the Widget is embed, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
🎖@cveNotify
The Category Posts Widget WordPress plugin before 4.9.17, term-and-category-based-posts-widget WordPress plugin before 4.9.13 does not validate and escape some of its "Category Posts" widget settings before outputting them back in a page/post where the Widget is embed, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
🎖@cveNotify
WPScan
Category Posts Widget (Free < 4.9.17, Pro < 4.9.13) - Admin+ Stored XSS
See details on Category Posts Widget (Free < 4.9.17, Pro < 4.9.13) - Admin+ Stored XSS CVE 2024-6158. View the latest Plugin Vulnerabilities on WPScan.
🚨 CVE-2024-6759
When mounting a remote filesystem using NFS, the kernel did not sanitize remotely provided filenames for the path separator character, "/". This allows readdir(3) and related functions to return filesystem entries with names containing additional path components.
The lack of validation described above gives rise to a confused deputy problem. For example, a program copying files from an NFS mount could be tricked into copying from outside the intended source directory, and/or to a location outside the intended destination directory.
🎖@cveNotify
When mounting a remote filesystem using NFS, the kernel did not sanitize remotely provided filenames for the path separator character, "/". This allows readdir(3) and related functions to return filesystem entries with names containing additional path components.
The lack of validation described above gives rise to a confused deputy problem. For example, a program copying files from an NFS mount could be tricked into copying from outside the intended source directory, and/or to a location outside the intended destination directory.
🎖@cveNotify
🚨 CVE-2024-6760
A logic bug in the code which disables kernel tracing for setuid programs meant that tracing was not disabled when it should have, allowing unprivileged users to trace and inspect the behavior of setuid programs.
The bug may be used by an unprivileged user to read the contents of files to which they would not otherwise have access, such as the local password database.
🎖@cveNotify
A logic bug in the code which disables kernel tracing for setuid programs meant that tracing was not disabled when it should have, allowing unprivileged users to trace and inspect the behavior of setuid programs.
The bug may be used by an unprivileged user to read the contents of files to which they would not otherwise have access, such as the local password database.
🎖@cveNotify
🚨 CVE-2024-7006
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
🎖@cveNotify
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
🎖@cveNotify
🚨 CVE-2024-7272
A vulnerability, which was classified as critical, was found in FFmpeg up to 5.1.5. This affects the function fill_audiodata of the file /libswresample/swresample.c. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. This issue was fixed in version 6.0 by 9903ba28c28ab18dc7b7b6fb8571cc8b5caae1a6 but a backport for 5.1 was forgotten. The exploit has been disclosed to the public and may be used. Upgrading to version 5.1.6 and 6.0 9903ba28c28ab18dc7b7b6fb8571cc8b5caae1a6 is able to address this issue. It is recommended to upgrade the affected component.
🎖@cveNotify
A vulnerability, which was classified as critical, was found in FFmpeg up to 5.1.5. This affects the function fill_audiodata of the file /libswresample/swresample.c. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. This issue was fixed in version 6.0 by 9903ba28c28ab18dc7b7b6fb8571cc8b5caae1a6 but a backport for 5.1 was forgotten. The exploit has been disclosed to the public and may be used. Upgrading to version 5.1.6 and 6.0 9903ba28c28ab18dc7b7b6fb8571cc8b5caae1a6 is able to address this issue. It is recommended to upgrade the affected component.
🎖@cveNotify