CXSECURITY.COM Free Security List

Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected

{{te.id}}. {{te.nameDis}} ({{te.count}})

Random comment

{{ x.title }}
{{ x.auth }}

Voted

{{ x.nameSh }} +{{x.pos}} {{x.neg}}

Check the Bugtraq

2024-10-16
Med.	dolibarr 20.0.1 Multiple security token SQLi nu11secur1ty
High	BYOB Unauthenticated Remote Code Execution Multiple CVE Valentin Lobstein
Med.	Ultra Mini HTTPd 1.21 - POST - Denial of Service (DoS) Fagner Lima - Aka r3ng4f
2024-10-13
Med.	VICIdial 2.14-917a SQL Injection CVE-2024-8503 Jaggar Henry
Med.	WordPress LMS 4.2.7 SQL Injection CVE-2024-8522 Avento
Med.	Netman 204 4.05 SQL Injection / Unauthenticated Password Reset Multiple CVE T. Weber
2024-10-12
Med.	BALC Media - Blind Sql Injection Vulnerability behrouz mansoori
Med.	ABB Cylon Aspect 3.07.02 sshUpdate.php Unauthenticated Remote SSH Service Control LiquidWorm
High	ABB Cylon Aspect 3.08.00 dialupSwitch.php Remote Code Execution LiquidWorm
Med.	ABB Cylon Aspect 3.07.02 user.properties Default Credentials LiquidWorm
2024-10-08
Med.	PHP-Nuke Top Module SQL Injection Emiliano Febbi
2024-10-07
Low	Acronis Cyber Infrastructure Default Password Remote Code Execution h00die-gr3y
Med.	Online Complete - Blind Sql Injection Vulnerability behrouz mansoori

Dorks

2024-10-17
CVE-2024-49248	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Igor Funa Ad Inserter allows Reflected XSS.This issue affects Ad Inserter: from n/a through 2.7.37.
CVE-2024-49255	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Daniele Alessandra Da Reactions allows Stored XSS.This issue affects Da Reactions: from n/a through 5.1.5.
CVE-2024-49259	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Primary Addon for Elementor allows Stored XSS.This issue affects Primary Addon for Elementor: from n/a through 1.5.8.
CVE-2024-49261	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LOOS,Inc. Arkhe Blocks allows Stored XSS.This issue affects Arkhe Blocks: from n/a through 2.23.0.
CVE-2024-49262	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in wepic Country Flags for Elementor allows Stored XSS.This issue affects Country Flags for Elementor: from n/a through 1.0.1.
CVE-2024-49263	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Takashi Matsuyama My Favorites allows Stored XSS.This issue affects My Favorites: from n/a through 1.4.1.
CVE-2024-49264	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Events Addon for Elementor allows Stored XSS.This issue affects Events Addon for Elementor: from n/a through 2.2.0.
CVE-2024-49276	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themis Solutions, Inc. Clio Grow allows Reflected XSS.This issue affects Clio Grow: from n/a through 1.0.2.
CVE-2024-49277	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodeAstrology Team UltraAddons Elementor Lite allows Stored XSS.This issue affects UltraAddons Elementor Lite: from n/a through 1.1.8.
CVE-2024-49278	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in omnipressteam Omnipress allows Stored XSS.This issue affects Omnipress: from n/a through 1.4.3.

2024-10-12
Med.	BALC Media - Blind Sql Injection Vulnerability "Developed by BALC Media"	behrouz mansoori
2024-10-08
Med.	PHP-Nuke Top Module SQL Injection intext: Powered by PHP-Nuke	Emiliano Febbi
2024-10-07
Med.	Online Complete - Blind Sql Injection Vulnerability "Powered by Online Complete to"	behrouz mansoori
2024-10-05
High	MD-Pro 1.0.76 Shell Upload / SQL Injection intext: Powered by MD-Pro	Emiliano Febbi
2024-09-30
Med.	krishna Tech - Sql Injection "Website Developed By krishna Tech"	behrouz mansoori

Quick goto:

Bugtraq The latest CVEs Dorks
Search

Bugtraq

CVEMAP

By Author

CVE Id

CWE Id

By vendors

By products

Are you looking CVE for some product?

Top Vendors:
Apple Microsoft Google Oracle Apache IBM Red Hat HP Adobe Mozilla

Full List of Vendors

Top Products:
Linux Kernel Mac OS X Windows XP Windows 10 Flash Player Adobe Reader PHP JRE JDK
Wordpress Joomla Chrome IE Firefox Safari HTTPD Tomcat Nginx

Full List of Products

Top CWE:
CWE-89 (SQL Injection) CWE-79 (XSS) CWE-119 (Buffer Overflow) CWE-22 (Path Traversal)

Check CWE Dictionary

Donate:

is an open project developed and moderated fully by one independent person.

Help develop the project and make
Donations

Bugtraq Stats

CVE database

Affected

Random comment

Voted

2024-10-16

Med.

High

Med.

2024-10-13

Med.

Med.

Med.

2024-10-12

Med.

Med.

High

Med.

2024-10-08

Med.

2024-10-07

Low

Med.

The latest CVEs

2024-10-17

Dorks

2024-10-12

Med.

2024-10-08

Med.

2024-10-07

Med.

2024-10-05

High

2024-09-30

Med.

Quick goto:

Are you looking CVE for some product?

Top Vendors:

Top Products:

Top CWE:

Donate:

is an open project developed and moderated fully by one independent person.

Help develop the project and makeDonations

Help develop the project and make
Donations