Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-5097
A vulnerability, which was classified as problematic, was found in SourceCodester Simple Inventory System 1.0. Affected is an unknown function of the file /tableedit.php#page=editprice. The manipulation of the argument itemnumber leads to cross-site request forgery. It is possibl...
NA
CVE-2024-5095
A vulnerability classified as problematic has been found in Victor Zsviot Camera 8.26.31. This affects an unknown part of the component MQTT Packet Handler. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed...
NA
CVE-2024-5096
A vulnerability classified as problematic was found in Hipcam Device up to 20240511. This vulnerability affects unknown code of the file /log/wifi.mac of the component MAC Address Handler. The manipulation leads to information disclosure. The attack can be initiated remotely. The...
NA
CVE-2024-36050
Nix up to and including 2.22.1 mishandles certain usage of hash caches, which makes it easier for malicious users to replace current source code with attacker-controlled source code by luring a maintainer into accepting a malicious pull request.
NA
CVE-2024-28063
Kiteworks Totemomail up to and including 7.0.0 allows /responsiveUI/EnvelopeOpenServlet envelopeRecipient reflected XSS.
NA
CVE-2024-28064
Kiteworks Totemomail 7.x and 8.x prior to 8.3.0 allows /responsiveUI/EnvelopeOpenServlet messageId directory traversal for unauthenticated file read and delete operations (with displayLoginChunkedImages) and write operations (with storeLoginChunkedImages).
NA
CVE-2024-36048
QAbstractOAuth in Qt Network Authorization in Qt prior to 5.15.17, 6.x prior to 6.2.13, 6.3.x up to and including 6.5.x prior to 6.5.6, and 6.6.x up to and including 6.7.x prior to 6.7.1 uses only the time to seed the PRNG, which may result in guessable values.
NA
CVE-2024-5094
A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This issue affects some unknown processing of the file view_payment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotel...
NA
CVE-2024-36043
question_image.ts in SurveyJS Form Library prior to 1.10.4 allows contentMode=youtube XSS via the imageLink property.
NA
CVE-2024-5093
A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiat...
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »