Welcome to cxsecurity. enjoy
Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected
{{te.id}}. {{te.nameDis}} ({{te.count}})
Random comment
{{ x.title }}
{{ x.auth }}
{{ x.text }}

Voted
{{ x.nameSh }} +{{x.pos}} {{x.neg}}

2024-07-12
Med.
2024-07-11
Low
High
Med.
Med.
2024-07-10
Low
2024-07-09
Med.
Med.
Med.
Med.
Med.
Low
High

The latest CVEs

Dorks

2024-07-15
CVE-2024-36455
An improper input validation allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request.
CVE-2024-36456
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file.
CVE-2024-36457
The vulnerability allows an attacker to bypass the authentication requirements for a specific PAM endpoint.
CVE-2024-36458
The vulnerability allows a malicious low-privileged PAM user to perform server upgrade related actions.
CVE-2024-38491
The vulnerability allows an unauthenticated attacker to read arbitrary information from the database.
CVE-2024-38492
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file.
CVE-2024-38493
A reflected cross-site scripting (XSS) vulnerability exists in the PAM UI web interface. A remote attacker able to convince a PAM user to click on a specially crafted link to the PAM UI web interface could potentially execute arbitrary client-side code in the context of PAM UI.
CVE-2024-38494
This vulnerability allows a high-privileged authenticated PAM user to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request.
CVE-2024-6689
Local Privilege Escalation in MSI-Installer in baramundi Management Agent v23.1.172.0 on Windows allows a local unprivileged user to escalate privileges to SYSTEM.
CVE-2024-38495
A specific authentication strategy allows a malicious attacker to learn ids of all PAM users defined in its database.
2024-07-12
Med.
lajeh - SQL Injection vulnerability
"Powered by lajeh"
Mahdi Karimi
2024-07-09
Med.
Bluesoft Infotech - Blind Sql Injection Vulnerability
"Designed by Bluesoft Infotech"
behrouz mansoori
Med.
Neetai Tech - Sql Injection
"Reserved By Neetai Tech"
behrouz mansoori
Med.
Cinema Booking System - Multiple Vulnerabilities
intitle:Cinema Booking System
bRpsd
Med.
krishna Tech - Blind Sql Injection
"Website Developed By krishna Tech"
behrouz mansoori

Copyright 2024, cxsecurity.com

 

Back to Top