Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-3727
Description<!---->A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.A flaw was found ...
NA
CVE-2024-4622
alpitronic Hypercharger EV Charger
NA
CVE-2024-4317
Missing authorization in PostgreSQL built-in views pg_stats_ext and pg_stats_ext_exprs allows an unprivileged database user to read most common values and other statistics from CREATE STATISTICS commands of other users. The most common values may reveal column values the eavesdro...
NA
CVE-2024-28277
[Suggested description] In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. This vulnerability allows attackers to manipulate the subject's name, leading the execut...
1 Github repository
NA
CVE-2024-28276
[Suggested description] Sourcecodester School Task Manager 1.0 is vulnerable to Cross Site Scripting (XSS) via add-task.php?task_name= component. [Vulnerability Type] Cross Site Scripting (XSS) [Vendor of Product] Sourcecodester [Affected Product Code Base] Sourcecodester Scho...
1 Github repository
NA
CVE-2024-3744
[kubernetes] CVE-2024-3744: azure-file-csi-driver discloses service account tokens in logs
NA
CVE-2024-34365
CVE-2024-34365: Apache Karaf Cave: Cave SSRF and arbitrary file access
NA
CVE-2024-27393
Xen Security Advisory 457 v3 (CVE-2024-27393) - Linux/xen-netfront: Memory leak due to missing cleanup function
NA
CVE-2024-4671
Google fixes fifth Chrome zero-day exploited in attacks this year
1 Article
NA
CVE-2024-34481
Drupal-Wiki versions 8.30 and 8.31 suffer from multiple persistent cross site scripting vulnerabilities.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »