Search Results (Refine Search)
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2024-31581 |
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers to cause undefined behavior within the application. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31580 |
PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in the component /runtime/vararg_functions.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31041 |
Null Pointer Dereference vulnerability in topic_filtern function in mqtt_parser.c in NanoMQ 0.21.7 allows attackers to cause a denial of service. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31040 |
Buffer Overflow vulnerability in the get_var_integer function in mqtt_parser.c in NanoMQ 0.21.7 allows remote attackers to cause a denial of service via a series of specially crafted hexstreams. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-31031 |
An issue in `coap_pdu.c` in libcoap 4.3.4 allows attackers to cause undefined behavior via a sequence of messages leading to unsigned integer overflow. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30990 |
SQL Injection vulnerability in the "Invoices" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "searchdata" parameter. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30989 |
Cross Site Scripting vulnerability in /edit-client-details.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code via the "cname", "comname", "state" and "city" parameter. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30953 |
A stored cross-site scripting (XSS) vulnerability in Htmly v2.9.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Link Name parameter of Menu Editor module. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30950 |
A stored cross-site scripting (XSS) vulnerability in FUDforum v3.1.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the SQL statements field under /adm/admsql.php. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-29950 |
The class FileTransfer implemented in Brocade SANnav before v2.3.1, v2.3.0a, uses the ssh-rsa signature scheme, which has a SHA-1 hash. The vulnerability could allow a remote, unauthenticated attacker to perform a man-in-the-middle attack. Published: April 17, 2024; 3:15:07 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-3914 |
Use after free in V8 in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Published: April 17, 2024; 2:15:16 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-32161 |
jizhiCMS 2.5 suffers from a File upload vulnerability. Published: April 17, 2024; 2:15:16 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30988 |
Cross Site Scripting vulnerability in /search-invoices.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code and obtain sensitive information via the Search bar. Published: April 17, 2024; 2:15:16 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30987 |
Cross Site Scripting vulnerability in /bwdates-reports-ds.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code and obtain sensitive information via the fromdate and todate parameters. Published: April 17, 2024; 2:15:16 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30986 |
Cross Site Scripting vulnerability in /edit-services-details.php of phpgurukul Client Management System using PHP & MySQL 1.1 allows attackers to execute arbitrary code and via "price" and "sname" parameter. Published: April 17, 2024; 2:15:16 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30985 |
SQL Injection vulnerability in "B/W Dates Reports" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute arbitrary SQL commands via "todate" and "fromdate" parameters. Published: April 17, 2024; 2:15:16 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30982 |
SQL Injection vulnerability in phpgurukul Cyber Cafe Management System Using PHP & MySQL 1.0 allows attackers to run arbitrary SQL commands via the upid parameter in the /view-user-detail.php file. Published: April 17, 2024; 2:15:16 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30951 |
FUDforum v3.1.3 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the chpos parameter at /adm/admsmiley.php. Published: April 17, 2024; 2:15:15 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-2961 |
The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable. Published: April 17, 2024; 2:15:15 PM -0400 |
V3.x:(not available) V2.0:(not available) |
CVE-2024-30983 |
SQL Injection vulnerability in phpgurukul Cyber Cafe Management System Using PHP & MySQL 1.0 allows attackers to run arbitrary SQL commands via the compname parameter in /edit-computer-detail.php file. Published: April 17, 2024; 1:15:15 PM -0400 |
V3.x:(not available) V2.0:(not available) |