Latest CVE Feed
-
7.2
HIGHCVE-2022-3300
The Form Maker by 10Web WordPress plugin before 1.15.6 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin... Read more
Affected Products : form_maker- EPSS Score: %0.36
- Published: Oct. 25, 2022
- Modified: May. 09, 2025
-
6.5
MEDIUMCVE-2022-3247
The Blog2Social: Social Media Auto Post & Scheduler WordPress plugin before 6.9.10 does not have authorisation in an AJAX action, and does not ensure that the URL to make a request to is an external one. As a result, any authenticated users, such as subsc... Read more
Affected Products : blog2social- EPSS Score: %0.60
- Published: Oct. 25, 2022
- Modified: May. 09, 2025
-
5.4
MEDIUMCVE-2022-34870
Apache Geode versions up to 1.15.0 are vulnerable to a Cross-Site Scripting (XSS) via data injection when using Pulse web application to view Region entries.... Read more
Affected Products : geode- EPSS Score: %1.31
- Published: Oct. 25, 2022
- Modified: May. 09, 2025
-
7.8
HIGHCVE-2022-33185
Several commands in Brocade Fabric OS before Brocade Fabric OS v.9.0.1e, and v9.1.0 use unsafe string functions to process user input. Authenticated local attackers could abuse these vulnerabilities to exploit stack-based buffer overflows, allowing arbitr... Read more
Affected Products : fabric_operating_system- EPSS Score: %0.08
- Published: Oct. 25, 2022
- Modified: May. 09, 2025
-
9.8
CRITICALCVE-2020-26629
A JQuery Unrestricted Arbitrary File Upload vulnerability was discovered in Hospital Management System V4.0 which allows an unauthenticated attacker to upload any file to the server.... Read more
Affected Products : hospital_management_system- EPSS Score: %0.72
- Published: Jan. 10, 2024
- Modified: May. 09, 2025
-
7.8
HIGHCVE-2024-45574
Memory corruption during array access in Camera kernel due to invalid index from invalid command data.... Read more
- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-45575
Memory corruption Camera kernel when large number of devices are attached through userspace.... Read more
Affected Products : wcd9380_firmware wcd9385_firmware wsa8830_firmware wsa8835_firmware sxr2230p_firmware wsa8832_firmware wcn3660b_firmware fastconnect_6900_firmware fastconnect_7800_firmware sdm429w_firmware +18 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-45576
Memory corruption while prociesing command buffer buffer in OPE module.... Read more
Affected Products : sw5100_firmware sw5100p_firmware wcd9380_firmware wcd9385_firmware wcn3980_firmware wcn3988_firmware wsa8830_firmware wsa8835_firmware sxr2230p_firmware wsa8832_firmware +28 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-45577
Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump request information.... Read more
Affected Products : wcd9380_firmware wsa8830_firmware wsa8835_firmware wcn3660b_firmware fastconnect_6900_firmware fastconnect_7800_firmware sdm429w_firmware wcn3620_firmware sdm429w wcd9380 +10 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2025-27132
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.... Read more
Affected Products : openharmony- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
5.5
MEDIUMCVE-2025-27241
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.... Read more
Affected Products : openharmony- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Denial of Service
-
5.5
MEDIUMCVE-2025-27248
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference.... Read more
Affected Products : openharmony- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Denial of Service
-
7.8
HIGHCVE-2024-49830
Memory corruption while processing an IOCTL call to set mixer controls.... Read more
Affected Products : qca6574au_firmware qca6595au_firmware qca6678aq_firmware qca6698aq_firmware wcn3660b_firmware qca9377_firmware sdm429w_firmware wcn3620_firmware qca9367_firmware qca6574au +14 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-49829
Memory corruption can occur during context user dumps due to inadequate checks on buffer length.... Read more
Affected Products : wcd9380_firmware wsa8830_firmware wsa8835_firmware wcn3660b_firmware fastconnect_6900_firmware fastconnect_7800_firmware sdm429w_firmware wcn3620_firmware sdm429w wcd9380 +10 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-45583
Memory corruption while handling multiple IOCTL calls from userspace to operate DMA operations.... Read more
Affected Products : fastconnect_7800_firmware wcd9390_firmware wcd9395_firmware wsa8840_firmware wsa8845_firmware wsa8845h_firmware fastconnect_7800 wcd9390 wcd9395 wsa8840 +4 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-45581
Memory corruption while sound model registration for voice activation with audio kernel driver.... Read more
Affected Products : qam8295p_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware sa8145p_firmware sa8150p_firmware sa8155p_firmware +50 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-45579
Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver to dump request information, due to a missing memory requirement check.... Read more
Affected Products : wcd9380_firmware wsa8830_firmware wsa8835_firmware wcn3660b_firmware fastconnect_6900_firmware fastconnect_7800_firmware sdm429w_firmware wcn3620_firmware sdm429w wcd9380 +10 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-45578
Memory corruption while acquire and update IOCTLs during IFE output resource ID validation.... Read more
Affected Products : wcd9380_firmware wcd9385_firmware wsa8830_firmware wsa8835_firmware sxr2230p_firmware wsa8832_firmware wcn3660b_firmware fastconnect_6900_firmware fastconnect_7800_firmware sdm429w_firmware +18 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-49835
Memory corruption while reading secure file.... Read more
Affected Products : aqt1000_firmware qam8295p_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware +414 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption
-
7.8
HIGHCVE-2024-49845
Memory corruption during the FRS UDS generation process.... Read more
Affected Products : qam8295p_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware +282 more products- Published: May. 06, 2025
- Modified: May. 09, 2025
- Vuln Type: Memory Corruption