Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-21751
Missing Authorization vulnerability in RabbitLoader.This issue affects RabbitLoader: from n/a up to and including 2.19.13.
NA
CVE-2024-23524
Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a up to and including 2.0.30.
NA
CVE-2024-35726
Missing Authorization vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a up to and including 3.4.19.
NA
CVE-2024-35720
Missing Authorization vulnerability in A WP Life Album Gallery – WordPress Gallery.This issue affects Album Gallery – WordPress Gallery: from n/a up to and including 1.5.7.
NA
CVE-2024-37880
The Kyber reference implementation prior to 9b8d306, when compiled by LLVM Clang up to and including 18.x with some common optimization options, has a timing side channel that allows malicious users to recover an ML-KEM 512 secret key in minutes. This occurs because poly_frommsg ...
NA
CVE-2024-5389
In lunary-ai/lunary version 1.2.13, an insufficient granularity of access control vulnerability allows users to create, update, get, and delete prompt variations for datasets not owned by their organization. This issue arises due to the application not properly validating the own...
9.8
CVSSv3
CVE-2024-4577
In PHP versions 8.1.* prior to 8.1.29, 8.2.* prior to 8.2.20, 8.3.* prior to 8.3.8, when using Apache and PHP-CGI on Windows, if the system is set up to use certain code pages, Windows may use "Best-Fit" behavior to replace characters in command line given to ...