Latest CVE Feed
-
5.3
MEDIUMCVE-2024-45612
Contao is an Open Source CMS. In affected versions an untrusted user can inject insert tags into the canonical tag, which are then replaced on the web page (front end). Users are advised to update to Contao 4.13.49, 5.3.15 or 5.4.3. Users unable to upgrad... Read more
Affected Products : contao- Published: Sep. 17, 2024
- Modified: Sep. 23, 2024
-
6.1
MEDIUMCVE-2024-8951
A vulnerability classified as problematic was found in SourceCodester Resort Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file manage_fee.php. The manipulation of the argument toview leads to cross site scripti... Read more
- Published: Sep. 17, 2024
- Modified: Sep. 23, 2024
-
7.5
HIGHCVE-2024-8948
A vulnerability was found in MicroPython 1.23.0. It has been rated as critical. Affected by this issue is the function mpz_as_bytes of the file py/objint.c. The manipulation leads to heap-based buffer overflow. The attack may be launched remotely. The exp... Read more
Affected Products : micropython- Published: Sep. 17, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-8949
A vulnerability classified as critical has been found in SourceCodester Online Eyewear Shop 1.0. This affects an unknown part of the file /classes/Master.php of the component Cart Content Handler. The manipulation of the argument cart_id/id leads to impro... Read more
Affected Products : online_eyewear_shop- Published: Sep. 17, 2024
- Modified: Sep. 23, 2024
-
6.1
MEDIUMCVE-2024-8653
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific paths on the site. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly others. Apply patch from vendor https://netcat.ru/ ht... Read more
Affected Products : netcat_content_management_system- Published: Sep. 19, 2024
- Modified: Sep. 23, 2024
-
6.1
MEDIUMCVE-2024-8652
A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific path on the site. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly others. Apply patch from vendor https://netcat.ru/ htt... Read more
Affected Products : netcat_content_management_system- Published: Sep. 19, 2024
- Modified: Sep. 23, 2024
-
6.9
MEDIUMCVE-2024-8651
A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that can be used to check whether a user exists in the system, which could be a basis for further attacks. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibl... Read more
Affected Products : netcat_content_management_system- Published: Sep. 19, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-37339
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 23, 2024
-
4.3
MEDIUMCVE-2024-38221
Microsoft Edge (Chromium-based) Spoofing Vulnerability... Read more
Affected Products : edge_chromium- Published: Sep. 19, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-43489
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability... Read more
Affected Products : edge_chromium- Published: Sep. 19, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-43496
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability... Read more
Affected Products : edge_chromium- Published: Sep. 19, 2024
- Modified: Sep. 23, 2024
-
9.8
CRITICALCVE-2024-9004
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected is an unknown function of the file /view/DBManage/Backup_Server_commit.php. The manipulation of the argument host leads to os command injection. It is possib... Read more
- Published: Sep. 19, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-37340
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-37338
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 23, 2024
-
7.1
HIGHCVE-2024-37337
Microsoft SQL Server Native Scoring Information Disclosure Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-37335
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 23, 2024
-
9.8
CRITICALCVE-2024-8944
A vulnerability, which was classified as critical, was found in code-projects Hospital Management System 1.0. This affects an unknown part of the file check_availability.php. The manipulation of the argument email leads to sql injection. It is possible to... Read more
- Published: Sep. 17, 2024
- Modified: Sep. 23, 2024
-
5.5
MEDIUMCVE-2024-46773
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check denominator pbn_div before used [WHAT & HOW] A denominator cannot be 0, and is checked before used. This fixes 1 DIVIDE_BY_ZERO issue reported by Coverity.... Read more
Affected Products : linux_kernel- Published: Sep. 18, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-26191
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 23, 2024
-
8.8
HIGHCVE-2024-26186
Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability... Read more
- Published: Sep. 10, 2024
- Modified: Sep. 23, 2024