Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-38312
When browsing private tabs, some data related to location history or webpage thumbnails could be persisted incorrectly within the sandboxed app bundle after app termination This vulnerability affects Firefox for iOS < 127.
NA
CVE-2024-38313
In certain scenarios a malicious website could attempt to display a fake location URL bar which could mislead users as to the actual website address This vulnerability affects Firefox for iOS < 127.
NA
CVE-2024-36587
Insecure permissions in DNSCrypt-proxy v2.0.0alpha9 to v2.1.5 allows non-privileged malicious users to escalate privileges to root via overwriting the binary dnscrypt-proxy.
NA
CVE-2024-3552
The Web Directory Free WordPress plugin prior to 1.7.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection with different techniques like UNION, Time-Based and Error-Based.
1 Github repository
NA
CVE-2023-52890
NTFS-3G prior to 75dcdc2 has a use-after-free in ntfs_uppercase_mbs in libntfs-3g/unistr.c. NOTE: discussion suggests that exploitation would be challenging.
NA
CVE-2024-1963
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.4 before 16.10.7, starting from 16.11 before 16.11.4, and starting from 17.0 before 17.0.2. A vulnerability in GitLab's Asana integration allowed an malicious user to potentially cause a regu...
NA
CVE-2024-1736
An issue has been discovered in GitLab CE/EE affecting all versions before 16.10.7, starting from 16.11 before 16.11.4, and starting from 17.0 before 17.0.2. A vulnerability in GitLab's CI/CD pipeline editor could allow for denial of service attacks through maliciously craft...
NA
CVE-2024-4201
A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 5.1 prior to 16.10.7, all versions starting from 16.11 prior to 16.111.4, all versions starting from 17.0 prior to 17.0.2. When viewing an XML file in a repository in raw mode, it can ...
NA
CVE-2024-1495
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.1 before 16.10.7, starting from 16.11 before 16.11.4, and starting from 17.0 before 17.0.2. It was possible for an malicious user to cause a denial of service using maliciously crafted file.
NA
CVE-2024-0865
CWE-798: Use of hard-coded credentials vulnerability exists that could cause local privilege escalation when logged in as a non-administrative user.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »