Skip to main content
CVE-2024-1012 CRITICAL POC Act Now

A vulnerability, which was classified as critical, has been found in Wanhu ezOFFICE 11.1.0.jsp. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Ezoffice
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.9%
CVE-2024-23745 CRITICAL POC Act Now

In Notion Web Clipper 1.0.3(7), a .nib file is susceptible to the Dirty NIB attack. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Apple Command Injection Web Clipper
NVD GitHub
CVSS 3.1
9.8
EPSS
2.0%
CVE-2024-1117 CRITICAL Act Now

A vulnerability was found in openBI up to 1.0.8. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection PHP RCE Openbi
NVD VulDB
CVSS 3.1
9.8
EPSS
0.7%
CVE-2024-1116 CRITICAL Act Now

A vulnerability was found in openBI up to 1.0.8. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP File Upload Openbi
NVD VulDB
CVSS 3.1
9.8
EPSS
0.8%
CVE-2024-1115 CRITICAL Act Now

A vulnerability was found in openBI up to 1.0.8 and classified as critical.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP Command Injection Openbi
NVD VulDB
CVSS 3.1
9.8
EPSS
1.9%
CVE-2024-1114 CRITICAL Act Now

A vulnerability has been found in openBI up to 1.0.8 and classified as critical. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass PHP Openbi
NVD VulDB
CVSS 3.1
9.8
EPSS
0.9%
CVE-2024-1113 CRITICAL Act Now

A vulnerability, which was classified as critical, was found in openBI up to 1.0.8. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP File Upload Openbi
NVD VulDB
CVSS 3.1
9.8
EPSS
0.6%
CVE-2024-24579 CRITICAL PATCH Act Now

stereoscope is a go library for processing container images and simulating a squash filesystem. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Stereoscope
NVD GitHub
CVSS 3.1
9.8
EPSS
0.4%
CVE-2024-1112 CRITICAL Act Now

Heap-based buffer overflow vulnerability in Resource Hacker, developed by Angus Johnson, affecting version 3.6.0.92. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Resource Hacker
NVD
CVSS 3.1
9.8
EPSS
1.6%
CVE-2024-21917 CRITICAL Act Now

A vulnerability exists in Rockwell Automation FactoryTalk® Service Platform that allows a malicious user to obtain the service token and use it for authentication on another FTSP directory. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Jwt Attack Information Disclosure Rockwell Factorytalk Services Platform
NVD
CVSS 3.1
9.1
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy