| Page(s) : 1 2 3 4 5 [6] 7 8 9 10 11 12 13 14 15 16 ... | Result(s) : 275514 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-05-15 | CVE-2024-31856 | cve | An attacker with certain MQTT permissions can create malicious messages to all CyberPower PowerPanel devices. This could result in an attacker injecting SQL syntax, writing ar... |
| N/A | 2024-05-15 | CVE-2024-32042 | cve | The key used to encrypt passwords stored in the database can be found in the CyberPower PowerPanel application code, allowing the passwords to be recovered. |
| N/A | 2024-05-15 | CVE-2024-32047 | cve | Hard-coded credentials for the CyberPower PowerPanel test server can be found in the production code. This might result in an attacker gaining access to the testing or produc... |
| N/A | 2024-05-15 | CVE-2024-32053 | cve | Hard-coded credentials are used by the CyberPower PowerPanel platform to authenticate to the database, other services, and the cloud. This could result in an attacker gain... |
| N/A | 2024-05-15 | CVE-2024-33615 | cve | A specially crafted Zip file containing path traversal characters can be imported to the CyberPower PowerPanel server, which allows file writing to the server outside the i... |
| N/A | 2024-05-15 | CVE-2024-33625 | cve | CyberPower PowerPanel business application code contains a hard-coded JWT signing key. This could result in an attacker forging JWT tokens to bypass authentication. |
| N/A | 2024-05-15 | CVE-2024-34025 | cve | CyberPower PowerPanel business application code contains a hard-coded set of authentication credentials. This could result in an attacker bypassing authentication and gaining ... |
| N/A | 2024-05-15 | CVE-2024-34906 | cve | An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file. |
| N/A | 2024-05-15 | CVE-2024-34909 | cve | An arbitrary file upload vulnerability in KYKMS v1.0.1 and below allows attackers to execute arbitrary code via uploading a crafted PDF file. |
| N/A | 2024-05-15 | CVE-2024-34913 | cve | An arbitrary file upload vulnerability in r-pan-scaffolding v5.0 and below allows attackers to execute arbitrary code via uploading a crafted PDF file. |
| N/A | 2024-05-15 | CVE-2024-4904 | cve | A vulnerability was found in Byzoro Smart S200 Management Platform up to 20240507. It has been rated as critical. This issue affects some unknown processing of the file /useratt... |
| N/A | 2024-05-15 | CVE-2024-4910 | cve | A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functional... |
| N/A | 2024-05-15 | CVE-2024-27243 | cve | Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct a denial of service via network access. |
| N/A | 2024-05-15 | CVE-2024-27244 | cve | Insufficient verification of data authenticity in the installer for Zoom Workplace VDI App for Windows may allow an authenticated user to conduct an escalation of privilege via... |
| N/A | 2024-05-15 | CVE-2024-4911 | cve | A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of th... |
| N/A | 2024-05-15 | CVE-2024-4912 | cve | A vulnerability classified as critical has been found in Campcodes Online Examination System 1.0. This affects an unknown part of the file addExamExe.php. The manipulation of th... |
| N/A | 2024-05-15 | CVE-2024-4913 | cve | A vulnerability classified as critical was found in Campcodes Online Examination System 1.0. This vulnerability affects unknown code of the file exam.php. The manipulation of th... |
| N/A | 2024-05-15 | CVE-2024-4947 | cve | Type Confusion in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security sev... |
| N/A | 2024-05-15 | CVE-2024-4948 | cve | Use after free in Dawn in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security sever... |
| N/A | 2024-05-15 | CVE-2024-4949 | cve | Use after free in V8 in Google Chrome prior to 125.0.6422.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severit... |
| Page(s) : 1 2 3 4 5 [6] 7 8 9 10 11 12 13 14 15 16 ... | Result(s) : 275514 |
