CXSECURITY.COM Free Security List

Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected

{{te.id}}. {{te.nameDis}} ({{te.count}})

Random comment

{{ x.title }}
{{ x.auth }}

Voted

{{ x.nameSh }} +{{x.pos}} {{x.neg}}

Check the Bugtraq

2024-04-16
High	BMC Compuware iStrobe Web 20.13 Pre-auth RCE CVE-2023-40304 trancap
Med.	Centreon 23.10-1.el8 SQL Injection Cody Sixteen
High	CrushFTP Remote Code Execution CVE-2023-43177 Christophe de la Fuente
High	kruxton-1.0-FileUpload-RCE nu11secur1ty
High	Backdoor.Win32.Dumador.c / Remote Stack Buffer Overflow (SEH) malvuln
2024-04-15
Med.	Amazon AWS Glue Database Password Disclosure Michael Werner
High	OpenClinic GA 5.247.01 Path Traversal (Authenticated) CVE-2023-40279 V. B.
High	PrusaSlicer 2.6.1 Arbitrary Code Execution CVE-2023-47268 Kamil Brenski
Med.	AMPLE BILLS 0.1 SQL injection nu11secur1ty
Med.	kruxton-1.0-Multiple-SQLi nu11secur1ty
High	Django REST Framework SimpleJWT 5.3.1 Information Disclosure CVE-2024-22513 Dhrumil Mistry
Med.	Jenkins 2.441 Local File Inclusion CVE-2024-23897 Matisse Beckandt
Med.	Moodle 3.10.1 SQL Injection CVE-2021-36393 Julio Ángel Ferrari

The latest CVEs

2024-04-18
CVE-2024-24910	A local attacker can escalate privileges on affected Check Point ZoneAlarm Extreme Security NextGen, Identity Agent for Windows, and Identity Agent for Windows Terminal Server. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system.
CVE-2024-32462	Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. in versions before 1.10.9, 1.12.9, 1.14.6, and 1.15.8, a malicious or compromised Flatpak app could execute arbitrary code outside its sandbox. Normally, the `--command` argument of `flatpak run` expects to be given a command to run in the specified...
CVE-2023-3758	A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.
CVE-2024-23557	HCL Connections contains a user enumeration vulnerability. Certain actions could allow an attacker to determine if the user is valid or not, leading to a possible brute force attack.
CVE-2024-29986	Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability
CVE-2024-29987	Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2024-32325	TOTOLINK EX200 V4.0.3c.7646_B20201211 contains a Cross-site scripting (XSS) vulnerability through the ssid parameter in the setWiFiExtenderConfig function.
CVE-2024-32326	TOTOLINK EX200 V4.0.3c.7646_B20201211 contains a Cross-site scripting (XSS) vulnerability through the key parameter in the setWiFiExtenderConfig function.
CVE-2024-32327	TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting (XSS) vulnerability in Port Forwarding under the Firewall Page.
CVE-2024-32332	TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting (XSS) vulnerability in WDS Settings under the Wireless Page.

Dorks

2024-04-14
Med.	Bigem Teknoloji - Sql Injection "Designed by Bigem Teknoloji"	behrouz mansoori
2024-04-06
Med.	SolarView Compact 6.00 - Command Injection http.html:"solarview compact"	parsa rezaie khiabanloo
2024-03-30
High	SolarView Compact 6.00 - Command Injection Bypass authentication( CVE-2023-23333 ) http.html:"solarview compact"	parsa rezaie khiabanloo
2024-03-24
Med.	Chenarkhayyam - Sql Injection And Waf , Cdn Bypass "طراحی شده توسط سایت چنار خیام"	parsa rezaie khiabanloo
2024-03-20
High	SolarView Compact 6.00 Command Injection( CVE-2023-23333 ) http.html:"solarview compact"	ByteHunter

Quick goto:

Bugtraq The latest CVEs Dorks
Search

Bugtraq

CVEMAP

By Author

CVE Id

CWE Id

By vendors

By products

Are you looking CVE for some product?

Top Vendors:
Apple Microsoft Google Oracle Apache IBM Red Hat HP Adobe Mozilla

Full List of Vendors

Top Products:
Linux Kernel Mac OS X Windows XP Windows 10 Flash Player Adobe Reader PHP JRE JDK
Wordpress Joomla Chrome IE Firefox Safari HTTPD Tomcat Nginx

Full List of Products

Top CWE:
CWE-89 (SQL Injection) CWE-79 (XSS) CWE-119 (Buffer Overflow) CWE-22 (Path Traversal)

Check CWE Dictionary

Donate:

is an open project developed and moderated fully by one independent person.

Help develop the project and make
Donations

Bugtraq Stats

CVE database

Affected

Random comment

Voted

2024-04-16

High

Med.

High

High

High

2024-04-15

Med.

High

High

Med.

Med.

High

Med.

Med.

The latest CVEs

2024-04-18

Dorks

2024-04-14

Med.

2024-04-06

Med.

2024-03-30

High

2024-03-24

Med.

2024-03-20

High

Quick goto:

Are you looking CVE for some product?

Top Vendors:

Top Products:

Top CWE:

Donate:

is an open project developed and moderated fully by one independent person.

Help develop the project and makeDonations

Help develop the project and make
Donations