Latest CVE Feed
-
6.5
MEDIUMCVE-2024-43320
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Livemesh Livemesh Addons for WPBakery Page Builder addons-for-visual-composer allows Stored XSS.This issue affects Livemesh Addons for WPBakery Pa... Read more
Affected Products : wpbakery_page_builder_addons- Published: Aug. 18, 2024
- Modified: Aug. 19, 2024
-
7.1
HIGHCVE-2024-43348
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Iznyn Purity Of Soul allows Reflected XSS.This issue affects Purity Of Soul: from n/a through 1.9.... Read more
Affected Products :- Published: Aug. 18, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-43820
In the Linux kernel, the following vulnerability has been resolved: dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume rm-raid devices will occasionally trigger the following warning when being resumed after a table load because DM_RECOVERY_... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
7.1
HIGHCVE-2024-43241
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in azzaroco Ultimate Membership Pro allows Reflected XSS.This issue affects Ultimate Membership Pro: from n/a through 12.6.... Read more
Affected Products : ultimate_membership_pro- Published: Aug. 18, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-43830
In the Linux kernel, the following vulnerability has been resolved: leds: trigger: Unregister sysfs attributes before calling deactivate() Triggers which have trigger specific sysfs attributes typically store related data in trigger-data allocated by th... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
5.3
MEDIUMCVE-2024-35686
Missing Authorization vulnerability in Automattic Sensei LMS, Automattic Sensei Pro (WC Paid Courses).This issue affects Sensei LMS: from n/a through 4.23.1; Sensei Pro (WC Paid Courses): from n/a through 4.23.1.1.23.1.... Read more
Affected Products : sensei_lms- Published: Aug. 18, 2024
- Modified: Aug. 19, 2024
-
5.4
MEDIUMCVE-2024-25582
Module savepoints could be abused to inject references to malicious code delivered through the same domain. Attackers could perform malicious API requests or extract information from the users account. Exploiting this vulnerability requires temporary acce... Read more
- Published: Aug. 19, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-42266
In the Linux kernel, the following vulnerability has been resolved: btrfs: make cow_file_range_inline() honor locked_page on error The btrfs buffered write path runs through __extent_writepage() which has some tricky return value handling for writepage_... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
0.0
NACVE-2024-42274
In the Linux kernel, the following vulnerability has been resolved: Revert "ALSA: firewire-lib: operate for period elapse event in process context" Commit 7ba5ca32fe6e ("ALSA: firewire-lib: operate for period elapse event in process context") removed th... Read more
Affected Products : linux_kernel- Published: Aug. 17, 2024
- Modified: Aug. 19, 2024
-
6.9
MEDIUMCVE-2024-7709
A vulnerability, which was classified as problematic, has been found in OcoMon 4.0RC1/4.0/5.0RC1. This issue affects some unknown processing of the file /includes/common/require_access_recovery.php of the component URL Handler. The manipulation leads to c... Read more
Affected Products : ocomon- Published: Aug. 13, 2024
- Modified: Aug. 17, 2024
-
7.8
HIGHCVE-2024-43373
webcrack is a tool for reverse engineering javascript. An arbitrary file write vulnerability exists in the webcrack module when processing specifically crafted malicious code on Windows systems. This vulnerability is triggered when using the unpack bundle... Read more
- Published: Aug. 15, 2024
- Modified: Aug. 16, 2024
-
7.0
HIGHCVE-2022-23817
Insufficient checking of memory buffer in ASP Secure OS may allow an attacker with a malicious TA to read/write to the ASP Secure OS kernel virtual address space, potentially leading to privilege escalation.... Read more
Affected Products :- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
6.8
MEDIUMCVE-2024-38161
Windows Mobile Broadband Driver Remote Code Execution Vulnerability... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
9.1
CRITICAL- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
9.1
CRITICAL- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
8.8
HIGHCVE-2024-38154
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
7.5
HIGHCVE-2024-38148
Windows Secure Channel Denial of Service Vulnerability... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
7.8
HIGHCVE-2024-38147
Microsoft DWM Core Library Elevation of Privilege Vulnerability... Read more
- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
7.5
HIGHCVE-2024-38146
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability... Read more
Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 +7 more products- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024
-
7.5
HIGHCVE-2024-38145
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability... Read more
Affected Products : windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 +7 more products- Published: Aug. 13, 2024
- Modified: Aug. 16, 2024