๐จ CVE-2024-37845
MangoOS before 5.2.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the Active Process Command feature.
๐@cveNotify
MangoOS before 5.2.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the Active Process Command feature.
๐@cveNotify
GitHub
Disclosures/CVE-2024-37845 RCE.pdf at main ยท herombey/Disclosures
Vulnerability Disclosures. Contribute to herombey/Disclosures development by creating an account on GitHub.
๐จ CVE-2024-37846
MangoOS before 5.2.0 was discovered to contain a Client-Side Template Injection (CSTI) vulnerability via the Platform Management Edit page.
๐@cveNotify
MangoOS before 5.2.0 was discovered to contain a Client-Side Template Injection (CSTI) vulnerability via the Platform Management Edit page.
๐@cveNotify
GitHub
Disclosures/CVE-2024-37846-CSTI.pdf at main ยท herombey/Disclosures
Vulnerability Disclosures. Contribute to herombey/Disclosures development by creating an account on GitHub.
๐จ CVE-2024-37847
An arbitrary file upload vulnerability in MangoOS before 5.1.4 and Mango API before 4.5.5 allows attackers to execute arbitrary code via a crafted file.
๐@cveNotify
An arbitrary file upload vulnerability in MangoOS before 5.1.4 and Mango API before 4.5.5 allows attackers to execute arbitrary code via a crafted file.
๐@cveNotify
GitHub
Disclosures/CVE-2024-37847 File Upload Path Traversal.pdf at main ยท herombey/Disclosures
Vulnerability Disclosures. Contribute to herombey/Disclosures development by creating an account on GitHub.
๐จ CVE-2024-48218
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list.
๐@cveNotify
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list.
๐@cveNotify
GitHub
Funadmin v5.0.2 has 1 SQL injection in the/curd/table/list path ยท Issue #21 ยท funadmin/funadmin
Vulnerability product: funadmin Vulnerability version: 5.0.2 Source code link: https://github.com/funadmin/funadmin/archive/refs/tags/v5.0.2.zip Vulnerability type: SQL injection Vulnerability deta...
๐จ CVE-2024-48222
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit.
๐@cveNotify
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit.
๐@cveNotify
GitHub
Funadmin v5.0.2 has 1 SQL injection in the/curd/table/edit path ยท Issue #22 ยท funadmin/funadmin
Vulnerability product: funadmin Vulnerability version: 5.0.2 Source code link: https://github.com/funadmin/funadmin/archive/refs/tags/v5.0.2.zip Vulnerability type: SQL injection Vulnerability deta...
๐จ CVE-2024-48223
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist.
๐@cveNotify
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist.
๐@cveNotify
GitHub
Funadmin v5.0.2 has 1 SQL injection in the/curd/table/fieldlist path ยท Issue #23 ยท funadmin/funadmin
Vulnerability product: funadmin Vulnerability version: 5.0.2 Source code link: https://github.com/funadmin/funadmin/archive/refs/tags/v5.0.2.zip Vulnerability type: SQL injection Vulnerability deta...
๐จ CVE-2024-48224
Funadmin v5.0.2 has an arbitrary file read vulnerability in /curd/index/editfile.
๐@cveNotify
Funadmin v5.0.2 has an arbitrary file read vulnerability in /curd/index/editfile.
๐@cveNotify
GitHub
Funadmin v5.0.2 has an arbitrary file read in the/curd/index/editfile path ยท Issue #24 ยท funadmin/funadmin
Vulnerability product: funadmin Vulnerability version: 5.0.2 Source code link: https://github.com/funadmin/funadmin/archive/refs/tags/v5.0.2.zip Vulnerability type: Read any file Vulnerability deta...
๐จ CVE-2024-48955
In NetAdmin 4.0.30319, an attacker can steal a valid session cookie and inject it into another device, granting unauthorized access. This type of attack is commonly referred to as session hijacking.
๐@cveNotify
In NetAdmin 4.0.30319, an attacker can steal a valid session cookie and inject it into another device, granting unauthorized access. This type of attack is commonly referred to as session hijacking.
๐@cveNotify
GitHub
GitHub - BrotherOfJhonny/CVE-2024-48955_Overview: CVE-2024-48955_Overview
CVE-2024-48955_Overview. Contribute to BrotherOfJhonny/CVE-2024-48955_Overview development by creating an account on GitHub.
๐จ CVE-2024-24198
smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/util.c.
๐@cveNotify
smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/util.c.
๐@cveNotify
GitHub
member access within misaligned address ยท Issue #1629 ยท pymumu/smartdns
้ฎ้ข็ฐ่ฑก ็ฎ่ฆๆ่ฟฐ้ฎ้ขๅบ็ฐ็็ฐ่ฑก smartdns/src/util.c Line 143 in 54b4dcd struct sockaddr_storage *addr_store = (struct sockaddr_storage *)addr; sockaddr_storage* need a 8-byte aligned address, but sockaddr* addr i...
๐จ CVE-2024-3987
The WP Mobile Menu โ The Mobile-Friendly Responsive Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via image alt text in all versions up to, and including, 2.8.4.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
๐@cveNotify
The WP Mobile Menu โ The Mobile-Friendly Responsive Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via image alt text in all versions up to, and including, 2.8.4.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
๐@cveNotify
๐จ CVE-2023-21405
Knud from Fraktal.fi has found a flaw in some Axis Network Door Controllers and Axis Network
Intercoms when communicating over OSDP, highlighting that the OSDP message parser crashes
the pacsiod process, causing a temporary unavailability of the door-controlling functionalities
meaning that doors cannot be opened or closed. No sensitive or customer data can be extracted
as the Axis device is not further compromised. Please refer to the Axis security advisory for more information, mitigation and affected products and software versions.
๐@cveNotify
Knud from Fraktal.fi has found a flaw in some Axis Network Door Controllers and Axis Network
Intercoms when communicating over OSDP, highlighting that the OSDP message parser crashes
the pacsiod process, causing a temporary unavailability of the door-controlling functionalities
meaning that doors cannot be opened or closed. No sensitive or customer data can be extracted
as the Axis device is not further compromised. Please refer to the Axis security advisory for more information, mitigation and affected products and software versions.
๐@cveNotify
๐จ CVE-2023-21406
Ariel Harush and Roy Hodir from OTORIO have found a flaw in the AXIS A1001 when
communicating over OSDP. A heap-based buffer overflow was found in the pacsiod process which
is handling the OSDP communication allowing to write outside of the allocated buffer. By
appending invalid data to an OSDP message it was possible to write data beyond the heap
allocated buffer. The data written outside the buffer could be used to execute arbitrary code.
lease refer to the Axis security advisory for more information, mitigation and affected products and software versions.
๐@cveNotify
Ariel Harush and Roy Hodir from OTORIO have found a flaw in the AXIS A1001 when
communicating over OSDP. A heap-based buffer overflow was found in the pacsiod process which
is handling the OSDP communication allowing to write outside of the allocated buffer. By
appending invalid data to an OSDP message it was possible to write data beyond the heap
allocated buffer. The data written outside the buffer could be used to execute arbitrary code.
lease refer to the Axis security advisory for more information, mitigation and affected products and software versions.
๐@cveNotify
๐จ CVE-2023-35983
This issue was addressed with improved data protection. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. An app may be able to modify protected parts of the file system.
๐@cveNotify
This issue was addressed with improved data protection. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. An app may be able to modify protected parts of the file system.
๐@cveNotify
Apple Support
About the security content of macOS Ventura 13.5
This document describes the security content of macOS Ventura 13.5.
๐1
๐จ CVE-2023-23346
HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information.
๐@cveNotify
HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information.
๐@cveNotify
Hcl-Software
Security Bulletin: Use of a broken cryptographic algorithm affects HCL DRYiCE MyCloud (CVE-2023-23346) - Customer Support
HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm.
๐จ CVE-2023-35990
The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14. An app may be able to identify what other apps a user has installed.
๐@cveNotify
The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14. An app may be able to identify what other apps a user has installed.
๐@cveNotify
seclists.org
Full Disclosure: APPLE-SA-09-26-2023-2 macOS Sonoma 14
๐จ CVE-2023-34056
vCenter Server contains a partial information disclosure vulnerability. A malicious actor with non-administrative privileges to vCenter Server may leverage this issue to access unauthorized data.
๐@cveNotify
vCenter Server contains a partial information disclosure vulnerability. A malicious actor with non-administrative privileges to vCenter Server may leverage this issue to access unauthorized data.
๐@cveNotify
๐จ CVE-2023-6876
The Clever Fox โ One Click Website Importer by Nayra Themes plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'clever-fox-activate-theme' function in all versions up to, and including, 25.2.0. This makes it possible for authenticated attackers, with subscriber access and above, to modify the active theme, including to an invalid value which can take down the site.
๐@cveNotify
The Clever Fox โ One Click Website Importer by Nayra Themes plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'clever-fox-activate-theme' function in all versions up to, and including, 25.2.0. This makes it possible for authenticated attackers, with subscriber access and above, to modify the active theme, including to an invalid value which can take down the site.
๐@cveNotify
๐จ CVE-2024-1689
The WooCommerce Tools plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the woocommerce_tool_toggle_module() function in all versions up to, and including, 1.2.9. This makes it possible for authenticated attackers, with subscriber-level access and above, to deactivate arbitrary plugin modules.
๐@cveNotify
The WooCommerce Tools plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the woocommerce_tool_toggle_module() function in all versions up to, and including, 1.2.9. This makes it possible for authenticated attackers, with subscriber-level access and above, to deactivate arbitrary plugin modules.
๐@cveNotify
๐จ CVE-2023-32475
Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.
๐@cveNotify
Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.
๐@cveNotify
๐จ CVE-2024-1768
The Clever Fox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's info box block in all versions up to, and including, 25.2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
๐@cveNotify
The Clever Fox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's info box block in all versions up to, and including, 25.2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
๐@cveNotify
๐จ CVE-2024-1988
The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel โ Combo Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tag' attribute in blocks in all versions up to, and including, 2.2.80 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
๐@cveNotify
The Post Grid, Form Maker, Popup Maker, WooCommerce Blocks, Post Blocks, Post Carousel โ Combo Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tag' attribute in blocks in all versions up to, and including, 2.2.80 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
๐@cveNotify