Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-21685
This High severity Information Disclosure vulnerability was introduced in versions 9.4.0, 9.12.0, and 9.15.0 of Jira Core Data Center. This Information Disclosure vulnerability, with a CVSS Score of 7.4, allows an unauthenticated malicious user to view sensitive information via a...
NA
CVE-2024-37799
CodeProjects Restaurant Reservation System v1.0 exists to contain a SQL injection vulnerability via the reserv_id parameter at view_reservations.php.
NA
CVE-2024-37800
CodeProjects Restaurant Reservation System v1.0 exists to contain a reflected cross-site scripting (XSS) vulnerability via the Date parameter at index.php.
NA
CVE-2024-37802
CodeProjects Health Care hospital Management System v1.0 exists to contain a SQL injection vulnerability in the Patient Info module via the searvalu parameter.
NA
CVE-2024-37803
Multiple stored cross-site scripting (XSS) vulnerabilities in CodeProjects Health Care hospital Management System v1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the fname and lname parameters under the Staff Info page.
NA
CVE-2024-5275
A hard-coded password in the FileCatalyst TransferAgent can be found which can be used to unlock the keystore from which contents may be read out, for example, the private key for certificates. Exploit of this vulnerability could lead to a machine-in-the-middle (MiTM) attack agai...
NA
CVE-2023-47726
IBM QRadar Suite Software 1.10.12.0 up to and including 1.10.21.0 and IBM Cloud Pak for Security 1.10.12.0 up to and including 1.10.21.0 could allow an authenticated user to execute certain arbitrary commands due to improper input validation. IBM X-Force ID: 272087.
NA
CVE-2024-5750
Rejected reason: ** REJECT ** Not a valid security issue.
NA
CVE-2024-5967
A vulnerability was found in Keycloak. The LDAP testing endpoint allows changing the Connection URL independently without re-entering the currently configured LDAP bind credentials. This flaw allows an attacker with admin access (permission manage-realm) to change the LDAP host U...
NA
CVE-2024-38504
In JetBrains YouTrack prior to 2024.2.34646 the Guest User Account was enabled for attaching files to articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »