Search Results (Refine Search)
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2024-3786 |
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through Device Synchronizations (/admin/DeviceReplication). Exploitation of this vulnerability could allow a remote user to execute arbitrary code. Published: April 15, 2024; 10:15:08 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3785 |
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through Device NAS shared section (/admin/DeviceNAS). Exploitation of this vulnerability could allow a remote user to execute arbitrary code. Published: April 15, 2024; 10:15:08 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3784 |
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through S3 Accounts (/admin/CloudAccounts). Exploitation of this vulnerability could allow a remote user to execute arbitrary code. Published: April 15, 2024; 10:15:08 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3783 |
The Backup Agents section in WBSAirback 21.02.04 is affected by a Path Traversal vulnerability, allowing a user with low privileges to download files from the system. Published: April 15, 2024; 10:15:08 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3782 |
Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to create a manipulated HTML form to perform privileged actions once it is executed by a privileged user. Published: April 15, 2024; 10:15:08 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3781 |
Command injection vulnerability in the operating system. Improper neutralisation of special elements in Active Directory integration allows the intended command to be modified when sent to a downstream component in WBSAirback 21.02.04. Published: April 15, 2024; 10:15:08 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3780 |
A vulnerability of Information Exposure has been found on Technicolor CGA2121 affecting the version 1.01, this vulnerability allows a local attacker to obtain sensitive information stored on the device such as wifi network's SSID and their respective passwords. Published: April 15, 2024; 8:15:13 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-24898 |
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in openEuler kernel on Linux allows Resource Leak Exposure. This vulnerability is associated with program files https://gitee.Com/openeuler/kernel/blob/openEuler-1.0-LTS/drivers/staging/gmjstcm/tcm.C. This issue affects kernel: from 4.19.90-2109.1.0.0108 before 4.19.90-2403.4.0.0244. Published: April 15, 2024; 8:15:13 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-24891 |
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in openEuler kernel on Linux allows Resource Leak Exposure. This vulnerability is associated with program files https://gitee.Com/openeuler/kernel/blob/openEuler-1.0-LTS/drivers/staging/gmjstcm/tcm.C. This issue affects kernel: from 4.19.90-2109.1.0.0108 before 4.19.90-2403.4.0.0244. Published: April 15, 2024; 8:15:13 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3802 |
Vulnerabilities in Celeste 22.x was vulnerable to takeover from unauthenticated local attacker. Published: April 15, 2024; 7:15:11 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32129 |
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Freshworks Freshdesk (official).This issue affects Freshdesk (official): from n/a through 2.3.4. Published: April 15, 2024; 7:15:11 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31421 |
Missing Authorization vulnerability in Supsystic Popup by Supsystic.This issue affects Popup by Supsystic: from n/a through 1.10.27. Published: April 15, 2024; 7:15:11 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31389 |
Cross-Site Request Forgery (CSRF) vulnerability in Ertano MihanPanel.This issue affects MihanPanel: from n/a before 12.7. Published: April 15, 2024; 7:15:10 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31388 |
Cross-Site Request Forgery (CSRF) vulnerability in Pauple Table & Contact Form 7 Database – Tablesome.This issue affects Table & Contact Form 7 Database – Tablesome: from n/a through 1.0.25. Published: April 15, 2024; 7:15:10 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31385 |
Cross-Site Request Forgery (CSRF) vulnerability in Reservation Diary ReDi Restaurant Reservation.This issue affects ReDi Restaurant Reservation: from n/a through 24.0128. Published: April 15, 2024; 7:15:10 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31384 |
Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Spa and Salon.This issue affects Spa and Salon: from n/a through 1.2.7. Published: April 15, 2024; 7:15:10 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31383 |
Cross-Site Request Forgery (CSRF) vulnerability in Pagelayer PopularFX.This issue affects PopularFX: from n/a through 1.2.4. Published: April 15, 2024; 7:15:10 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31382 |
Cross-Site Request Forgery (CSRF) vulnerability in Creative Themes HQ Blocksy.This issue affects Blocksy: from n/a through 2.0.22. Published: April 15, 2024; 7:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31381 |
Cross-Site Request Forgery (CSRF) vulnerability in RebelCode Spotlight Social Media Feeds.This issue affects Spotlight Social Media Feeds: from n/a through 1.6.10. Published: April 15, 2024; 7:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31379 |
Cross-Site Request Forgery (CSRF) vulnerability in Smash Balloon Smash Balloon Social Post Feed.This issue affects Smash Balloon Social Post Feed: from n/a through 4.2.1. Published: April 15, 2024; 7:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |