Vulnerabilities

Samsung Mobile devices information disclosure | CVE-2024-20850

April 3, 2024

NAME__________Samsung Mobile devices information disclosurePlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

IOSiX IO-1020 default account | CVE-2024-30210

April 3, 2024

NAME__________IOSiX IO-1020 default accountPlatforms Affected:IOSiX IO-1020 359 IOSiX IO-1020 358Risk Level:7.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IOSiX IO-1020 contains a default Wi-Fi password. A...

Samsung Mobile devices code execution | CVE-2024-20843

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Computer Laboratory Management System cross-site scripting | CVE-2024-3140

April 3, 2024

NAME__________Computer Laboratory Management System cross-site scriptingPlatforms Affected:Sourcecodester Computer Laboratory Management System 1.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Computer Laboratory Management System is vulnerable...

Computer Laboratory Management System security bypass | CVE-2024-3139

April 3, 2024

NAME__________Computer Laboratory Management System security bypassPlatforms Affected:Sourcecodester Computer Laboratory Management System 1.0Risk Level:5.4Exploitability:Proof of ConceptConsequences:Bypass Security DESCRIPTION__________Computer Laboratory Management System...

VMware SD-WAN Edge command execution | CVE-2024-22246

April 3, 2024

NAME__________VMware SD-WAN Edge command executionPlatforms Affected:VMware SD-WAN Edge 5.0Risk Level:7.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________VMware SD-WAN Edge could allow a remote attacker to...

IOSiX IO-1020 default account | CVE-2024-31069

April 3, 2024

Hikvision NVR Devices command execution | CVE-2024-29949

April 3, 2024

NAME__________Hikvision NVR Devices command executionPlatforms Affected:Hikvision DS-7604NXI-K1/4P 4.76.005 build231012Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Hikvision NVR Devices could allow a remote authenticated attacker...

Samsung Mobile devices code execution | CVE-2024-20842

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Samsung Mobile devices code execution | CVE-2024-20848

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Samsung Mobile devices code execution | CVE-2024-20849

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

VMware SD-WAN Orchestrator security bypass | CVE-2024-22247

April 3, 2024

NAME__________VMware SD-WAN Orchestrator security bypassPlatforms Affected:VMware SD-WAN Orchestrator 5.0Risk Level:4.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________VMware SD-WAN Edge could allow a local attacker to...

Samsung Mobile devices security bypass | CVE-2024-20851

April 3, 2024

NAME__________Samsung Mobile devices security bypassPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Hikvision NVR Devices denial of service | CVE-2024-29948

April 3, 2024

NAME__________Hikvision NVR Devices denial of servicePlatforms Affected:Hikvision DS-7604NXI-K1/4P 4.76.005 build231012Risk Level:3.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Hikvision NVR Devices are vulnerable to a...

VMware SD-WAN Orchestrator open redirect | CVE-2024-22248

April 3, 2024

NAME__________VMware SD-WAN Orchestrator open redirectPlatforms Affected:VMware SD-WAN Orchestrator 5.0Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________VMware SD-WAN Orchestrator could allow a remote attacker to...

Samsung Mobile devices security bypass | CVE-2024-20847

April 3, 2024

NAME__________Samsung Mobile devices security bypassPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Samsung Mobile devices code execution | CVE-2024-20846

April 3, 2024

NAME__________Samsung Mobile devices code executionPlatforms Affected:Samsung Mobile Device Android 12 Samsung Mobile Device Android 13 Samsung Mobile Device Android 14Risk...

Elementor Addon Elements Plugin for WordPress cross-site scripting | CVE-2024-2091

April 2, 2024

NAME__________Elementor Addon Elements Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Elementor Addon Elements Plugin for WordPress 1.13.1Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Elementor Addon...

Saleor information disclosure | CVE-2024-29888

April 2, 2024

NAME__________Saleor information disclosurePlatforms Affected:saleor saleorRisk Level:4.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Saleor could allow a remote attacker to obtain sensitive information, caused by a...

Easy Appointments addons Plugin for WordPress cross-site scripting | CVE-2024-2842

April 2, 2024

NAME__________Easy Appointments addons Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Easy Appointments Plugin for WordPress 3.11.18Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Easy Appointments Plugin...

EmbedPress Plugin for WordPress cross-site scripting | CVE-2024-2688

April 2, 2024

NAME__________EmbedPress Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress EmbedPress Plugin for WordPress 3.9.12Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________EmbedPress Plugin for WordPress is vulnerable...

Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scripting | CVE-2024-2144

April 2, 2024

NAME__________ Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scriptingPlatforms Affected: WordPress Ultimate Addons for Beaver Builder Plugin for...

Elementor Website Builder Plugin for WordPress cross-site scripting | CVE-2024-1364

April 2, 2024

NAME__________Elementor Website Builder Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Elementor Website Builder Pro Plugin for WordPress 3.20.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Elementor...

Sydney Toolbox Plugin for WordPress cross-site scripting | CVE-2024-2936

April 2, 2024

NAME__________Sydney Toolbox Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Sydney Toolbox Plugin for WordPress 1.26Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Sydney Toolbox Plugin for...

Vulnerabilities

Samsung Mobile devices information disclosure | CVE-2024-20850

IOSiX IO-1020 default account | CVE-2024-30210

Samsung Mobile devices code execution | CVE-2024-20843

Computer Laboratory Management System cross-site scripting | CVE-2024-3140

Computer Laboratory Management System security bypass | CVE-2024-3139

VMware SD-WAN Edge command execution | CVE-2024-22246

IOSiX IO-1020 default account | CVE-2024-31069

Hikvision NVR Devices command execution | CVE-2024-29949

Samsung Mobile devices code execution | CVE-2024-20842

Samsung Mobile devices code execution | CVE-2024-20848

Samsung Mobile devices code execution | CVE-2024-20849

VMware SD-WAN Orchestrator security bypass | CVE-2024-22247

Samsung Mobile devices security bypass | CVE-2024-20851

Hikvision NVR Devices denial of service | CVE-2024-29948

VMware SD-WAN Orchestrator open redirect | CVE-2024-22248

Samsung Mobile devices security bypass | CVE-2024-20847

Samsung Mobile devices code execution | CVE-2024-20846

Elementor Addon Elements Plugin for WordPress cross-site scripting | CVE-2024-2091

Saleor information disclosure | CVE-2024-29888

Easy Appointments addons Plugin for WordPress cross-site scripting | CVE-2024-2842

EmbedPress Plugin for WordPress cross-site scripting | CVE-2024-2688

Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scripting | CVE-2024-2144

Elementor Website Builder Plugin for WordPress cross-site scripting | CVE-2024-1364

Sydney Toolbox Plugin for WordPress cross-site scripting | CVE-2024-2936

Cobalt Strike Beacon Detected – 113[.]44[.]87[.]199:443

Cobalt Strike Beacon Detected – 43[.]139[.]124[.]56:8080

Cobalt Strike Beacon Detected – 183[.]63[.]173[.]29:8011

Cobalt Strike Beacon Detected – 62[.]234[.]185[.]105:80

Cobalt Strike Beacon Detected – 140[.]143[.]132[.]170:80

You may have missed