CXSECURITY.COM Free Security List

Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected

{{te.id}}. {{te.nameDis}} ({{te.count}})

Random comment

{{ x.title }}
{{ x.auth }}

Voted

{{ x.nameSh }} +{{x.pos}} {{x.neg}}

Check the Bugtraq

2024-04-16
High	BMC Compuware iStrobe Web 20.13 Pre-auth RCE CVE-2023-40304 trancap
Med.	Centreon 23.10-1.el8 SQL Injection Cody Sixteen
High	CrushFTP Remote Code Execution CVE-2023-43177 Christophe de la Fuente
High	kruxton-1.0-FileUpload-RCE nu11secur1ty
High	Backdoor.Win32.Dumador.c / Remote Stack Buffer Overflow (SEH) malvuln
2024-04-15
Med.	Amazon AWS Glue Database Password Disclosure Michael Werner
High	OpenClinic GA 5.247.01 Path Traversal (Authenticated) CVE-2023-40279 V. B.
High	PrusaSlicer 2.6.1 Arbitrary Code Execution CVE-2023-47268 Kamil Brenski
Med.	AMPLE BILLS 0.1 SQL injection nu11secur1ty
Med.	kruxton-1.0-Multiple-SQLi nu11secur1ty
High	Django REST Framework SimpleJWT 5.3.1 Information Disclosure CVE-2024-22513 Dhrumil Mistry
Med.	Jenkins 2.441 Local File Inclusion CVE-2024-23897 Matisse Beckandt
Med.	Moodle 3.10.1 SQL Injection CVE-2021-36393 Julio Ángel Ferrari

The latest CVEs

2024-04-17
CVE-2024-0257	RoboDK v5.5.4 is vulnerable to heap-based buffer overflow while processing a specific project file. The resulting memory corruption may crash the application.
CVE-2024-21989	ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x are susceptible to a vulnerability which when successfully exploited could allow a read-only user to escalate their privileges.
CVE-2024-21990	ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x contain hard-coded credentials that could allow an attacker to view Deploy configuration information and modify the account credentials.
CVE-2024-29951	Brocade SANnav before v2.3.1 and v2.3.0a uses the SHA-1 hash in internal SSH ports that are not open to remote connection.
CVE-2024-3817	HashiCorp??s go-getter library is vulnerable to argument injection when executing Git to discover remote branches. This vulnerability does not affect the go-getter/v2 branch and package.
CVE-2024-32337	A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the ADMIN LOGIN URL parameter under the Security module.
CVE-2024-32338	A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the PAGE TITLE parameter under the Current Page module.
CVE-2024-32339	Multiple cross-site scripting (XSS) vulnerabilities in the HOW TO page of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into any of the parameters.
CVE-2024-32340	A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the WEBSITE TITLE parameter under the Menu module.
CVE-2024-32341	Multiple cross-site scripting (XSS) vulnerabilities in the Home page of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into any of the parameters.

Dorks

2024-04-14
Med.	Bigem Teknoloji - Sql Injection "Designed by Bigem Teknoloji"	behrouz mansoori
2024-04-06
Med.	SolarView Compact 6.00 - Command Injection http.html:"solarview compact"	parsa rezaie khiabanloo
2024-03-30
High	SolarView Compact 6.00 - Command Injection Bypass authentication( CVE-2023-23333 ) http.html:"solarview compact"	parsa rezaie khiabanloo
2024-03-24
Med.	Chenarkhayyam - Sql Injection And Waf , Cdn Bypass "طراحی شده توسط سایت چنار خیام"	parsa rezaie khiabanloo
2024-03-20
High	SolarView Compact 6.00 Command Injection( CVE-2023-23333 ) http.html:"solarview compact"	ByteHunter

Quick goto:

Bugtraq The latest CVEs Dorks
Search

Bugtraq

CVEMAP

By Author

CVE Id

CWE Id

By vendors

By products

Are you looking CVE for some product?

Top Vendors:
Apple Microsoft Google Oracle Apache IBM Red Hat HP Adobe Mozilla

Full List of Vendors

Top Products:
Linux Kernel Mac OS X Windows XP Windows 10 Flash Player Adobe Reader PHP JRE JDK
Wordpress Joomla Chrome IE Firefox Safari HTTPD Tomcat Nginx

Full List of Products

Top CWE:
CWE-89 (SQL Injection) CWE-79 (XSS) CWE-119 (Buffer Overflow) CWE-22 (Path Traversal)

Check CWE Dictionary

Donate:

is an open project developed and moderated fully by one independent person.

Help develop the project and make
Donations

Bugtraq Stats

CVE database

Affected

Random comment

Voted

2024-04-16

High

Med.

High

High

High

2024-04-15

Med.

High

High

Med.

Med.

High

Med.

Med.

The latest CVEs

2024-04-17

Dorks

2024-04-14

Med.

2024-04-06

Med.

2024-03-30

High

2024-03-24

Med.

2024-03-20

High

Quick goto:

Are you looking CVE for some product?

Top Vendors:

Top Products:

Top CWE:

Donate:

is an open project developed and moderated fully by one independent person.

Help develop the project and makeDonations

Help develop the project and make
Donations