Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: products Clear
ID Title
CVE-2024-9465 KEV [KEV] SQL Injection in Palo alto networks palo-alto-networks (CVE-2024-9465)
SQL injection in Palo alto networks palo-alto-networks (CVE-2024-9465). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9463 KEV [KEV] OS Command Injection in Palo alto networks palo-alto-networks (CVE-2024-9463)
OS command injection in Palo alto networks palo-alto-networks (CVE-2024-9463). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43451 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-43451)
vulnerability in Microsoft windows (CVE-2024-43451). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-49039 KEV [KEV] Authentication Bypass in Microsoft windows (CVE-2024-49039)
authentication bypass in Microsoft windows (CVE-2024-49039). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-26086 KEV [KEV] Path Traversal in Atlassian jira-server-and-data-center (CVE-2021-26086)
path traversal in Atlassian jira-server-and-data-center (CVE-2021-26086). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-2120 KEV [KEV] Cross-Site Scripting (XSS) in Cisco adaptive-security-appliance-asa (CVE-2014-2120)
cross-site scripting in Cisco adaptive-security-appliance-asa (CVE-2014-2120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-41277 KEV [KEV] Information Disclosure in metabase (CVE-2021-41277)
vulnerability in metabase (CVE-2021-41277). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-50808 Code Injection in seacms (CVE-2024-50808)
code injection in seacms (CVE-2024-50808). Successful exploitation can lead to full system takeover.
CVE-2024-43093 KEV [KEV] Vulnerability in Android framework (CVE-2024-43093)
vulnerability in Android framework (CVE-2024-43093). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-51567 KEV [KEV] Vulnerability in Cyberpersons cyberpanel (CVE-2024-51567)
vulnerability in Cyberpersons cyberpanel (CVE-2024-51567). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-5910 KEV [KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2024-5910)
vulnerability in Palo alto networks palo-alto-networks (CVE-2024-5910). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-16278 KEV [KEV] Path Traversal in Nostromo nhttpd (CVE-2019-16278)
path traversal in Nostromo nhttpd (CVE-2019-16278). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-8956 KEV [KEV] Authentication Bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956)
authentication bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-8957 KEV [KEV] OS Command Injection in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8957)
OS command injection in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8957). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-51066 Vulnerability in phpgurukul (CVE-2024-51066)
vulnerability in phpgurukul (CVE-2024-51066). Confidential information can be exposed externally.
CVE-2024-51065 SQL Injection in sqli (CVE-2024-51065)
SQL injection in sqli (CVE-2024-51065). Successful exploitation can lead to full system takeover.
CVE-2024-51064 SQL Injection in sqli (CVE-2024-51064)
SQL injection in sqli (CVE-2024-51064). Successful exploitation can lead to full system takeover.
CVE-2024-51063 SQL Injection in sqli (CVE-2024-51063)
SQL injection in sqli (CVE-2024-51063). Confidential information can be exposed externally.
CVE-2024-51060 SQL Injection in sqli (CVE-2024-51060)
SQL injection in sqli (CVE-2024-51060). Confidential information can be exposed externally.
CVE-2024-37383 KEV [KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2024-37383)
cross-site scripting in Roundcube webmail (CVE-2024-37383). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-20481 KEV [KEV] Vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20481)
vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20481). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-47575 KEV [KEV] Vulnerability in Fortinet fortimanager (CVE-2024-47575)
vulnerability in Fortinet fortimanager (CVE-2024-47575). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38094 KEV [KEV] Unsafe Deserialization in Microsoft sharepoint (CVE-2024-38094)
vulnerability in Microsoft sharepoint (CVE-2024-38094). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9537 KEV [KEV] Vulnerability in Sciencelogic sl1 (CVE-2024-9537)
vulnerability in Sciencelogic sl1 (CVE-2024-9537). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-40711 KEV [KEV] Unsafe Deserialization in Veeam backup-replication (CVE-2024-40711)
vulnerability in Veeam backup-replication (CVE-2024-40711). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-46606 Cross-Site Scripting (XSS) in piwigo (CVE-2024-46606)
cross-site scripting in piwigo (CVE-2024-46606). Risk of unauthorized operations or information disclosure.
CVE-2024-46605 Cross-Site Scripting (XSS) in piwigo (CVE-2024-46605)
cross-site scripting in piwigo (CVE-2024-46605). Risk of unauthorized operations or information disclosure.
CVE-2024-35584 SQL Injection in sqli (CVE-2024-35584)
SQL injection in sqli (CVE-2024-35584). Successful exploitation can lead to full system takeover.
CVE-2023-31493 Code Injection in zoneminder (CVE-2023-31493)
code injection in zoneminder (CVE-2023-31493). Confidential information can be exposed externally.
CVE-2024-28987 KEV [KEV] Vulnerability in Solarwinds web-help-desk (CVE-2024-28987)
vulnerability in Solarwinds web-help-desk (CVE-2024-28987). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9680 KEV [KEV] Use-After-Free in Mozilla firefox (CVE-2024-9680)
vulnerability in Mozilla firefox (CVE-2024-9680). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-30088 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-30088)
vulnerability in Microsoft windows (CVE-2024-30088). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-50780 Vulnerability in apache (CVE-2023-50780)
vulnerability in apache (CVE-2023-50780). Successful exploitation can lead to full system takeover.
CVE-2024-46532 SQL Injection in sqli (CVE-2024-46532)
SQL injection in sqli (CVE-2024-46532). Successful exploitation can lead to full system takeover.
CVE-2024-23113 KEV [KEV] Vulnerability in Fortinet multiple-products (CVE-2024-23113)
vulnerability in Fortinet multiple-products (CVE-2024-23113). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9379 KEV [KEV] SQL Injection in Ivanti cloud-services-appliance-csa (CVE-2024-9379)
SQL injection in Ivanti cloud-services-appliance-csa (CVE-2024-9379). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9380 KEV [KEV] Command Injection in Ivanti cloud-services-appliance-csa (CVE-2024-9380)
command injection in Ivanti cloud-services-appliance-csa (CVE-2024-9380). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43047 KEV [KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2024-43047)
vulnerability in Qualcomm multiple-chipsets (CVE-2024-43047). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43573 KEV [KEV] Cross-Site Scripting (XSS) in Microsoft windows (CVE-2024-43573)
cross-site scripting in Microsoft windows (CVE-2024-43573). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43572 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-43572)
vulnerability in Microsoft windows (CVE-2024-43572). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-42831 Cross-Site Scripting (XSS) in CVE-2024-42831 (CVE-2024-42831)
cross-site scripting in CVE-2024-42831 (CVE-2024-42831). Risk of unauthorized operations or information disclosure.
CVE-2024-45519 KEV [KEV] Vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2024-45519)
vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2024-45519). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-29824 KEV [KEV] SQL Injection in Ivanti endpoint-manager-epm (CVE-2024-29824)
SQL injection in Ivanti endpoint-manager-epm (CVE-2024-29824). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-15415 KEV [KEV] OS Command Injection in Draytek multiple-vigor-routers (CVE-2020-15415)
OS command injection in Draytek multiple-vigor-routers (CVE-2020-15415). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-25280 KEV [KEV] OS Command Injection in D-link dir-820-router (CVE-2023-25280)
OS command injection in D-link dir-820-router (CVE-2023-25280). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0344 KEV [KEV] Unsafe Deserialization in Sap commerce-cloud (CVE-2019-0344)
vulnerability in Sap commerce-cloud (CVE-2019-0344). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-7593 KEV [KEV] Authentication Bypass in Ivanti virtual-traffic-manager (CVE-2024-7593)
authentication bypass in Ivanti virtual-traffic-manager (CVE-2024-7593). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2024-8963 KEV [KEV] Path Traversal in Ivanti cloud-services-appliance-csa (CVE-2024-8963)
path traversal in Ivanti cloud-services-appliance-csa (CVE-2024-8963). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0618 KEV [KEV] Unsafe Deserialization in Microsoft sql-server (CVE-2020-0618)
vulnerability in Microsoft sql-server (CVE-2020-0618). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-21445 KEV [KEV] Unsafe Deserialization in Oracle adf-faces (CVE-2022-21445)
vulnerability in Oracle adf-faces (CVE-2022-21445). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →