Aggregator
CVE-2023-4840 | MapPress Maps Plugin up to 2.88.4 on WordPress Shortcode cross site scripting
1 year 7 months ago
A vulnerability was found in MapPress Maps Plugin up to 2.88.4 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component Shortcode Handler. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2023-4840. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2023-34437 | Baker Hughes Bently Nevada 3500 5.05 information disclosure (icsa-23-269-05)
1 year 7 months ago
A vulnerability was found in Baker Hughes Bently Nevada 3500 5.05. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to information disclosure.
This vulnerability was named CVE-2023-34437. The attack can be initiated remotely. There is no exploit available.
It is recommended to change the configuration settings.
vuldb.com
CVE-2023-26015 | Chris Richardson MapPress Maps Plugin up to 2.85.4 on WordPress sql injection
1 year 7 months ago
A vulnerability, which was classified as critical, has been found in Chris Richardson MapPress Maps Plugin up to 2.85.4 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to sql injection.
This vulnerability is handled as CVE-2023-26015. The attack can only be initiated within the local network. There is no exploit available.
vuldb.com
CVE-2024-28662 | Piwigo up to 14.2.x functions.php create_tag cross site scripting (GHSA-8g2g-6f2c-6h7j)
1 year 7 months ago
A vulnerability classified as problematic was found in Piwigo up to 14.2.x. This vulnerability affects the function create_tag of the file admin/include/functions.php. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-28662. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-21012 | Oracle Java SE Networking improper authorization (DLA 3793-1)
1 year 7 months ago
A vulnerability was found in Oracle Java SE. It has been declared as critical. This vulnerability affects unknown code of the component Networking. The manipulation leads to improper authorization.
This vulnerability was named CVE-2024-21012. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-33403 | Campcodes Complete Web-Based School Management System 1.0 /model/get_events.php event_id sql injection
1 year 7 months ago
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /model/get_events.php. The manipulation of the argument event_id leads to sql injection.
This vulnerability is handled as CVE-2024-33403. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2024-39334 | Mendelson AS4 prior 2024 B376 XML Data deserialization
1 year 7 months ago
A vulnerability classified as critical has been found in Mendelson AS4. Affected is an unknown function of the component XML Data Handler. The manipulation leads to deserialization.
This vulnerability is traded as CVE-2024-39334. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-39150 | vditor up to 3.9.8 Data Packet path traversal
1 year 7 months ago
A vulnerability has been found in vditor up to 3.9.8 and classified as problematic. This vulnerability affects unknown code of the component Data Packet Handler. The manipulation leads to path traversal.
This vulnerability was named CVE-2024-39150. The attack can only be done within the local network. There is no exploit available.
vuldb.com
CVE-2024-29080 | HP Display Control permissions
1 year 7 months ago
A vulnerability was found in HP Display Control. It has been classified as problematic. This affects an unknown part. The manipulation leads to preservation of permissions.
This vulnerability is uniquely identified as CVE-2024-29080. It is possible to launch the attack on the local host. There is no exploit available.
vuldb.com
«Темнейшая временная линия»: почему Google-тренд встревожил физиков?
1 year 7 months ago
Квантовая наука рисует картину невидимых миров, взаимодействующих с нами.
RipperSec Targeted the Website of RBNr Militaria
1 year 7 months ago
RipperSec Targeted the Website of RBNr Militaria
Dark Web Informer
GitLab security advisory (AV24-653)
1 year 7 months ago
Canadian Centre for Cyber Security
Critical bug in EoL D-Link NAS devices now exploited in attacks
1 year 7 months ago
Attackers now target a critical severity vulnerability with publicly available exploit code that affects multiple models of end-of-life D-Link network-attached storage (NAS) devices. [...]
Sergiu Gatlan
A Threat Actor is Selling Access to Access Trader
1 year 7 months ago
A Threat Actor is Selling Access to Access Trader
Dark Web Informer
CVE-2024-27395 | Linux Kernel up to 6.9-rc5 openvswitch ovs_ct_exit use after free (Nessus ID 210815)
1 year 7 months ago
A vulnerability was found in Linux Kernel up to 6.9-rc5. It has been rated as critical. Affected by this issue is the function ovs_ct_exit of the component openvswitch. The manipulation leads to use after free.
This vulnerability is handled as CVE-2024-27395. The attack needs to be approached within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
SYLHET GANG-SG Targeted the Website of Israel Visa
1 year 7 months ago
SYLHET GANG-SG Targeted the Website of Israel Visa
Dark Web Informer
中国品牌电视机占日本五成市场份额
1 year 7 months ago
东芝于 1960 年创造出日本最早的彩色电视机,2018 年它将 REGZA 品牌的电视业务出售给了海信。如今在日本电视市场,今年前九个月海信占到了 40.4% 份额,位居首位,TCL 的
RipperSec Targeted the Website of Comune di Palermo
1 year 7 months ago
RipperSec Targeted the Website of Comune di Palermo
Dark Web Informer
Путь к Луне через прошлое: корабль Orion проходит испытания в камере эпохи Apollo
1 year 7 months ago
Последние штрихи перед запуском Artemis II.