Welcome to cxsecurity. enjoy
Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected
{{te.id}}. {{te.nameDis}} ({{te.count}})
Random comment
{{ x.title }}
{{ x.auth }}
{{ x.text }}

Voted
{{ x.nameSh }} +{{x.pos}} {{x.neg}}

2024-06-18
Med.
Low
Med.
Med.
High
Med.
2024-06-17
High
High
High
Med.
Med.
2024-06-15
Low
Low

The latest CVEs

Dorks

2024-06-21
CVE-2024-37183
Plain text credentials and session ID can be captured with a network sniffer.
CVE-2024-5746
A Server-Side Request Forgery vulnerability was identified in GitHub Enterprise Server that allowed an attacker with the Site Administrator role to gain arbitrary code execution capability on the GitHub Enterprise Server instance. Exploitation required authenticated access to GitHub Enterprise Server as a user with the Site Administrator role. Thi...
CVE-2024-32943
An attacker may be able to cause a denial-of-service condition by sending many SSH packets repeatedly.
CVE-2024-35246
An attacker may be able to cause a denial-of-service condition by sending many packets repeatedly.
CVE-2024-37899
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. When an admin disables a user account, the user's profile is executed with the admin's rights. This allows a user to place malicious code in the user profile before getting an admin to disable the user account. To reproduce, as a user ...
CVE-2024-38359
The Lightning Network Daemon (lnd) - is a complete implementation of a Lightning Network node. A parsing vulnerability in lnd's onion processing logic and lead to a DoS vector due to excessive memory allocation. The issue was patched in lnd v0.17.0. Users should update to a version > v0.17.0 to be protected. Users unable to upgrade may set...
CVE-2024-38361
Spicedb is an Open Source, Google Zanzibar-inspired permissions database to enable fine-grained authorization for customer applications. Use of an exclusion under an arrow that has multiple resources may resolve to `NO_PERMISSION` when permission is expected. If the resource exists under *multiple* folders and the user has access to view more than ...
2024-06-20
CVE-2024-38082
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2024-38093
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2024-6147
Poly Plantronics Hub Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Poly Plantronics Hub. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exi...
2024-06-18
Med.
Developed By Representindia.com - Blind Sql Injection
"Developed By Representindia.com"
behrouz mansoori
Med.
Developed By Representindia.com - Sql Injection
"Developed By Representindia.com"
behrouz mansoori
Med.
User Registration & Management System - SQLi
inurl:loginsystem/index.php
bRpsd
2024-06-17
Med.
Tisser Technologies LLP - Sql Injection
"Powered By : Tisser Technologies LLP"
behrouz mansoori
Med.
Technologies LLP - Blind Sql Injection
"Powered by Tisser Technologies LLP"
Behrouz Mansoori

Copyright 2024, cxsecurity.com

 

Back to Top