Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-32623
DescriptionThe MITRE CVE dictionary describes this issue as: HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5VM_array_fill in H5VM.c (called from H5S_select_elements in H5Spoint.c).
NA
CVE-2024-32613
DescriptionThe MITRE CVE dictionary describes this issue as: HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.
NA
CVE-2024-3806
CVE-2024-3806-AND-CVE-2024-3807-Poc CVE-2024-3806: Porto <= 7.1.0 - Unauthenticated Local File Inclusion via porto_ajax_posts CVE-2024-3807: Porto <= 7.1.0 - Authenticated (Contributor+) Local File Inclusion via Post Meta Porto 7.1.0: https://drive.google.com/file/d...
1 Github repository
NA
CVE-2024-3807
CVE-2024-3806-AND-CVE-2024-3807-Poc CVE-2024-3806: Porto <= 7.1.0 - Unauthenticated Local File Inclusion via porto_ajax_posts CVE-2024-3807: Porto <= 7.1.0 - Authenticated (Contributor+) Local File Inclusion via Post Meta Porto 7.1.0: https://drive.google.com/file/d...
1 Github repository
NA
CVE-2022-7890
Ethical Hacking Technical Report Name of Company: Procas T Nation Prepared by: Chino Lawrence A. Noble and Boyet P. Peñales Date: May 10, 2024 Executive Summary: This report details the findings of an ethical hacking assessment conducted for Procas T Nation. The assessment...
1 Github repository
NA
CVE-2024-34310
CVE-2024-34310 CVE-2024-34310 [Suggested description] Jin Fang Times Content Management System v3.2.3 was discovered to contain a SQL injection vulnerability via the id parameter. [Vulnerability Type] SQL Injection [Vendor of Product] https://www.bjjfsd.com/ [Affected Product...
1 Github repository
NA
CVE-2024-4701
CVE-2024-4701-POC POC for CVE-2024-4701
1 Github repository
NA
CVE-2024-34350
Next.js Vulnerable to HTTP Request Smuggling. Inconsistent interpretation of a crafted HTTP request meant that requests are treated as both a single request, and two separate requests by Next.js, leading to desynchronized responses. This led to a response queue poisoning vulnerab...
NA
CVE-2024-29212
Veeam Service Provider Console Vulnerability. Due to an unsafe deserialization method used by the Veeam Service Provider Console (VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remote Code Executi...
NA
CVE-2024-34342
react-pdf vulnerable to arbitrary JavaScript execution upon opening a malicious PDF with PDF.js. If PDF.js is used to load a malicious PDF, and PDF.js is configured with isEvalSupported set to true (which is the default value), unrestricted attacker-controlled JavaScript will be ...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »