CVE Alert: CVE-2024-41999
Vulnerability Summary: CVE-2024-41999 Smart-tab Android app installed April 2023 or earlier contains an active debug code vulnerability. If this vulnerability...
Vulnerabilities
CVE Alert: CVE-2024-42496
Vulnerability Summary: CVE-2024-42496 Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password....
CVE Alert: CVE-2024-8456
Vulnerability Summary: CVE-2024-8456 Certain switch models from PLANET Technology lack proper access control in firmware upload and download functionality, allowing...
CVE Alert: CVE-2024-8457
Vulnerability Summary: CVE-2024-8457 Certain switch models from PLANET Technology have a web application that does not properly validate specific parameters,...
CVE Alert: CVE-2024-8458
Vulnerability Summary: CVE-2024-8458 Certain switch models from PLANET Technology have a web application that is vulnerable to Cross-Site Request Forgery...
CVE Alert: CVE-2024-8454
Vulnerability Summary: CVE-2024-8454 The swctrl service is used to detect and remotely manage PLANET Technology devices. Certain switch models have...
CVE Alert: CVE-2024-8453
Vulnerability Summary: CVE-2024-8453 Certain switch models from PLANET Technology use an insecure hashing function to hash user passwords without being...
CVE Alert: CVE-2024-8459
Vulnerability Summary: CVE-2024-8459 Certain switch models from PLANET Technology store SNMPv3 users' passwords in plaintext within the configuration files, allowing...
CVE Alert: CVE-2024-45920
Vulnerability Summary: CVE-2024-45920 A Stored Cross-Site Scripting (XSS) vulnerability in Solvait 24.4.2 allows remote attackers to inject malicious scripts into...
CVE Alert: CVE-2024-46313
Vulnerability Summary: CVE-2024-46313 TP-Link WR941ND V6 has a stack overflow vulnerability in the ssid parameter in /userRpm/popupSiteSurveyRpm.htm. Affected Endpoints: No...
CVE Alert: CVE-2024-47641
Vulnerability Summary: CVE-2024-47641 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloperr Confetti Fall...
CVE Alert: CVE-2024-47172
Vulnerability Summary: CVE-2024-47172 Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An...
CVE Alert: CVE-2024-45772
Vulnerability Summary: CVE-2024-45772 Deserialization of Untrusted Data vulnerability in Apache Lucene Replicator. This issue affects Apache Lucene's replicator module: from...
CVE Alert: CVE-2024-46510
Vulnerability Summary: CVE-2024-46510 ESAFENET CDG v5 was discovered to contain a SQL injection vulnerability via the id parameter in the...
CVE Alert: CVE-2024-47530
Vulnerability Summary: CVE-2024-47530 Scout is a web-based visualizer for VCF-files. Open redirect vulnerability allows performing phishing attacks on users by...
CVE Alert: CVE-2024-46293
Vulnerability Summary: CVE-2024-46293 Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Incorrect Access Control. There is a lack of...
CVE Alert: CVE-2024-46280
Vulnerability Summary: CVE-2024-46280 PIX-LINK LV-WR22 RE3002-P1-01_V117.0 is vulnerable to Improper Access Control. The TELNET service is enabled with weak credentials...
CVE Alert: CVE-2024-47531
Vulnerability Summary: CVE-2024-47531 Scout is a web-based visualizer for VCF-files. Due to the lack of sanitization in the filename, it...
CVE Alert: CVE-2024-45993
Vulnerability Summary: CVE-2024-45993 Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb. Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2024-46475
Vulnerability Summary: CVE-2024-46475 A reflected cross-site scripting (XSS) vulnerability on the homepage of Metronic Admin Dashboard Template v2.0 allows attackers...
CVE Alert: CVE-2024-46548
Vulnerability Summary: CVE-2024-46548 TP-Link Tapo P125M and Kasa KP125M v1.0.3 was discovered to improperly validate certificates, allowing attackers to eavesdrop...
CVE Alert: CVE-2024-46540
Vulnerability Summary: CVE-2024-46540 A remote code execution (RCE) vulnerability in the component /admin/store.php of Emlog Pro before v2.3.15 allows attackers...
CVE Alert: CVE-2024-46549
Vulnerability Summary: CVE-2024-46549 An issue in the TP-Link MQTT Broker and API gateway of TP-Link Kasa KP125M v1.0.3 allows attackers...
CVE Alert: CVE-2024-42017
Vulnerability Summary: CVE-2024-42017 An issue was discovered in Atos Eviden iCare 2.7.1 through 2.7.11. The application exposes a web interface...
