Latest CVE Feed
-
5.5
CVSS31CVE-2024-45769
A vulnerability was found in Performance Co-Pilot (PCP). This flaw allows an attacker to send specially crafted data to the system, which could cause the program to misbehave or crash.... Read more
Affected Products :- Published: Sep. 19, 2024
- Modified: Sep. 19, 2024
-
5.5
CVSS31CVE-2024-8945
A vulnerability has been found in CodeCanyon RISE Ultimate Project Manager 3.7.0 and classified as critical. This vulnerability affects unknown code of the file /index.php/dashboard/save. The manipulation of the argument id leads to sql injection. The att... Read more
Affected Products :- Published: Sep. 17, 2024
- Modified: Sep. 17, 2024
-
5.5
CVSS31CVE-2024-38380
This vulnerability occurs when user-supplied input is improperly sanitized and then reflected back to the user's browser, allowing an attacker to execute arbitrary JavaScript in the context of the victim's browser session.... Read more
Affected Products :- Published: Sep. 17, 2024
- Modified: Sep. 17, 2024
-
5.4
CVSS31CVE-2024-47050
Prior to this patch being applied, Mautic's tracking was vulnerable to Cross-Site Scripting through the Page URL variable.... Read more
Affected Products : mautic- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-8796
Under the default configuration, Devise-Two-Factor versions >= 2.2.0 & < 6.0.0 generate TOTP shared secrets that are 120 bits instead of the 128-bit minimum defined by RFC 4226. Using a shared secret shorter than the minimum to generate a multi-factor aut... Read more
Affected Products :- Published: Sep. 17, 2024
- Modified: Sep. 17, 2024
-
5.3
CVSS31CVE-2024-46979
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible to get access to notification filters of any user by using a URL such as `<hostname>xwiki/bin/get/XWiki/Notifications/Code/NotificationF... Read more
Affected Products : xwiki- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-45813
find-my-way is a fast, open source HTTP router, internally using a Radix Tree (aka compact Prefix Tree), supports route params, wildcards, and it's framework independent. A bad regular expression is generated any time one has two parameters within a singl... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31196
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::ActionList::unpack10. This issue affects libfluid: 0.1.0... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-8891
An attacker with no knowledge of the current users in the web application, could build a dictionary of potential users and check the server responses as it indicates whether or not the user is present in CIRCUTOR Q-SMT in its firmware version 1.0.4.... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31185
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::of13::MeterBandList::unpack. This issue affects libfluid... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31197
Improper Null Termination vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::of10::Port:unpack. This issue affects libfluid: 0.1.0.... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31198
Out-of-bounds Read vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::of10::Port:unpack. This issue affects libfluid: 0.1.0.... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-6641
The WP Hardening – Fix Your WordPress Security plugin for WordPress is vulnerable to Security Feature Bypass in all versions up to, and including, 1.2.6. This is due to use of an incorrect regular expression within the "Stop User Enumeration" feature. Thi... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31182
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::QueuePropertyList::unpack10. This issue affects libfluid... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31175
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::of13::TablePropertiesList::unpack. This issue affects li... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31167
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::QueuePropertyList::unpack13. This issue affects libfluid... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-23915
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routines fluid_msg::of13::InstructionSet::unpack. This issue affects libflu... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31164
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routines fluid_msg::ActionList::unpack13. This issue affects libfluid: 0.1.... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-23916
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routines fluid_msg::ActionSet::unpack. This issue affects libfluid: 0.1.0.... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024
-
5.3
CVSS31CVE-2024-31165
Unchecked Return Value to NULL Pointer Dereference vulnerability in Open Networking Foundation (ONF) libfluid (libfluid_msg module). This vulnerability is associated with program routine fluid_msg::of13::SetFieldAction::unpack. This issue affects libflui... Read more
Affected Products :- Published: Sep. 18, 2024
- Modified: Sep. 18, 2024