Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.5

MEDIUM

CVE-2024-9573

SQL injection vulnerability in SOPlanning <1.45, through /soplanning/www/groupe_list.php, in the by parameter, which could allow a remote user to send a specially crafted query and extract all the information stored on the server....

Affected Products : soplanning
Published: Oct. 07, 2024

Modified: Oct. 08, 2024
6.3

MEDIUM

CVE-2024-9572

Cross-Site Scripting (XSS) vulnerability in SOPlanning <1.45, due to lack of proper validation of user input via /soplanning/www/process/groupe_save.php, in the groupe_id parameter. This could allow a remote user to send a specially crafted query to an au...

Affected Products : soplanning
Published: Oct. 07, 2024

Modified: Oct. 08, 2024
6.3

MEDIUM

CVE-2024-9571

Cross-Site Scripting (XSS) vulnerability in SOPlanning <1.45, due to lack of proper validation of user input via /soplanning/www/process/xajax_server.php, affecting multiple parameters. This could allow a remote user to send a specially crafted query to a...

Affected Products : soplanning
Published: Oct. 07, 2024

Modified: Oct. 08, 2024
9.0

HIGH

CVE-2024-9569

A vulnerability has been found in D-Link DIR-619L B1 2.06 and classified as critical. Affected by this vulnerability is the function formEasySetPassword of the file /goform/formEasySetPassword. The manipulation of the argument curTime leads to buffer over...

Affected Products : dir-619l_firmware dir-619l
Published: Oct. 07, 2024

Modified: Oct. 09, 2024
9.0

HIGH

CVE-2024-9568

A vulnerability, which was classified as critical, was found in D-Link DIR-619L B1 2.06. Affected is the function formAdvNetwork of the file /goform/formAdvNetwork. The manipulation of the argument curTime leads to buffer overflow. It is possible to launc...

Affected Products : dir-619l_firmware dir-619l
Published: Oct. 07, 2024

Modified: Oct. 09, 2024
6.6

MEDIUM

CVE-2024-45933

OnlineNewsSite v1.0 is vulnerable to Cross Site Scripting (XSS) which allows attackers to execute arbitrary code via the Title and summary fields in the /admin/post/edit/ endpoint....

Affected Products :
Published: Oct. 07, 2024

Modified: Oct. 08, 2024
7.3

HIGH

CVE-2023-6362

A vulnerability has been discovered in Winhex affecting version 16.1 SR-1 and 20.4. This vulnerability consists of a buffer overflow controlling the Structured Exception Handler (SEH) registers. This could allow attackers to execute arbitrary code via a l...

Affected Products :
Published: Oct. 07, 2024

Modified: Oct. 07, 2024
7.3

HIGH

CVE-2023-6361

A vulnerability has been discovered in Winhex affecting version 16.1 SR-1 and 20.4. This vulnerability consists of a buffer overflow controlling the Structured Exception Handler (SEH) registers. This could allow attackers to execute arbitrary code via a l...

Affected Products :
Published: Oct. 07, 2024

Modified: Oct. 07, 2024
9.0

HIGH

CVE-2024-9567

A vulnerability, which was classified as critical, has been found in D-Link DIR-619L B1 2.06. This issue affects the function formAdvFirewall of the file /goform/formAdvFirewall. The manipulation of the argument curTime leads to buffer overflow. The attac...

Affected Products : dir-619l_firmware dir-619l
Published: Oct. 07, 2024

Modified: Oct. 09, 2024
9.0

HIGH

CVE-2024-9566

A vulnerability classified as critical was found in D-Link DIR-619L B1 2.06. This vulnerability affects the function formDeviceReboot of the file /goform/formDeviceReboot. The manipulation of the argument next_page leads to buffer overflow. The attack can...

Affected Products : dir-619l_firmware
Published: Oct. 07, 2024

Modified: Oct. 09, 2024
5.5

MEDIUM

CVE-2024-46325

TP-Link WR740N V6 has a stack overflow vulnerability via the ssid parameter in /userRpm/popupSiteSurveyRpm.htm url....

Affected Products : wr740n_firmware wr740n
Published: Oct. 07, 2024

Modified: Jun. 02, 2025
5.4

MEDIUM

CVE-2024-45153

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be e...

Affected Products : experience_manager experience_manager_forms
Published: Oct. 07, 2024

Modified: Dec. 02, 2024
7.8

HIGH

CVE-2024-43047

Memory corruption while maintaining memory maps of HLOS memory....

Affected Products : qam8295p_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware sa6150p_firmware sa6155p_firmware +135 more products
Actively Exploited

Published: Oct. 07, 2024

Modified: Aug. 11, 2025
6.7

MEDIUM

CVE-2024-42027

The E2EE password entropy generated by Rocket.Chat Mobile prior to version 4.5.1 is insufficient, allowing attackers to crack it if they have the appropriate time and resources....

Affected Products :
Published: Oct. 07, 2024

Modified: Oct. 07, 2024
6.1

MEDIUM

CVE-2024-38425

Information disclosure while sending implicit broadcast containing APP launch information....

Affected Products : wcd9380_firmware wsa8830_firmware wsa8835_firmware snapdragon_662_mobile_platform_firmware fastconnect_6900_firmware fastconnect_7800_firmware snapdragon_4_gen_1_mobile_platform_firmware snapdragon_480_5g_mobile_platform_firmware snapdragon_680_4g_mobile_platform_firmware snapdragon_695_5g_mobile_platform_firmware +38 more products
Published: Oct. 07, 2024

Modified: Oct. 16, 2024
8.4

HIGH

CVE-2024-38399

Memory corruption while processing user packets to generate page faults....

Affected Products : qam8295p_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6155p_firmware sa8155p_firmware sa8195p_firmware sa8295p_firmware wcd9380_firmware wsa8810_firmware +70 more products
Published: Oct. 07, 2024

Modified: Oct. 16, 2024
7.5

HIGH

CVE-2024-38397

Transient DOS while parsing probe response and assoc response frame....

Affected Products : qam8295p_firmware qca6391_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6155p_firmware sa8155p_firmware sa8195p_firmware sa8295p_firmware wcd9380_firmware +226 more products
Published: Oct. 07, 2024

Modified: Aug. 11, 2025
8.2

HIGH

CVE-2024-33073

Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE....

Affected Products : qam8295p_firmware qca6391_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6155p_firmware sa8155p_firmware sa8195p_firmware sa8295p_firmware wcd9380_firmware +312 more products
Published: Oct. 07, 2024

Modified: Aug. 11, 2025
7.5

HIGH

CVE-2024-33071

Transient DOS while parsing the MBSSID IE from the beacons when IE length is 0....

Affected Products : qca6574au_firmware qca6564au_firmware qca6574a_firmware mdm9628_firmware qca6564a_firmware mdm9628 qca6564a qca6564au qca6574a qca6574au
Published: Oct. 07, 2024

Modified: Oct. 16, 2024
7.5

HIGH

CVE-2024-33070

Transient DOS while parsing ESP IE from beacon/probe response frame....

Affected Products : qca6574au_firmware qca6564au_firmware qca6574a_firmware mdm9628_firmware qca6564a_firmware mdm9628 qca6564a qca6564au qca6574a qca6574au
Published: Oct. 07, 2024

Modified: Oct. 16, 2024

Showing 20 of 294858 Results

1
...
2228
2229
2230
2231
2232
2233
2234
...
14743

Browse by Apps

Latest CVE Feed

6.5

6.3

6.3

9.0

9.0

6.6

7.3

7.3

9.0

9.0

5.5

5.4

7.8

6.7

6.1

8.4

7.5

8.2

7.5

7.5

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable