Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-36774
An arbitrary file upload vulnerability in Monstra CMS v3.0.4 allows malicious users to execute arbitrary code via uploading a crafted PHP file.
NA
CVE-2023-51847
An issue in obgm and Libcoap v.a3ed466 allows a remote malicious user to cause a denial of service via thecoap_context_t function in the src/coap_threadsafe.c:297:3 component.
NA
CVE-2024-22524
dnspod-sr 0dfbd37 is vulnerable to buffer overflow.
NA
CVE-2024-36775
A cross-site scripting (XSS) vulnerability in Monstra CMS v3.0.4 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the About Me parameter in the Edit Profile page.
NA
CVE-2024-36823
The encrypt() function of Ninja Core v7.0.0 exists to use a weak cryptographic algorithm, leading to a possible leakage of sensitive information.
NA
CVE-2024-24192
robdns commit d76d2e6 exists to contain a heap overflow via the component block->filename at /src/zonefile-insertion.c.
NA
CVE-2024-4013
A bug exists in the API, mesh_node_power_off(), which fails to copy the contents of the Replay Protection List (RPL) from RAM to NVM before powering down, resulting in the ability to replay unsaved messages. Note that as of June 2024, the Gecko SDK was renamed to the Simplicity ...
NA
CVE-2024-22525
dnspod-sr 0dfbd37 contains a SEGV.
NA
CVE-2024-24198
smartdns commit 54b4dc exists to contain a misaligned address at smartdns/src/util.c.
NA
CVE-2023-49441
dnsmasq 2.9 is vulnerable to Integer Overflow via forward_query.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »