Skip to main content
CVE-2024-1062 MEDIUM This Month

A heap overflow flaw was found in 389-ds-base. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Heap Overflow Buffer Overflow Denial Of Service 389 Directory Server Directory Server +11
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2024-25740 MEDIUM This Month

A memory leak flaw was found in the UBI driver in drivers/mtd/ubi/attach.c in the Linux kernel through 6.7.4 for UBI_IOCATT, because kobj->name is not released. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Linux Linux Kernel
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2024-24887 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Contest Gallery Photos and Files Contest Gallery - Contact Form, Upload Form, Social Share and Voting Plugin for WordPress.2.8.4. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Contest Gallery
NVD
CVSS 3.1
5.4
EPSS
0.1%
CVE-2024-22230 MEDIUM This Month

Dell Unity, versions prior to 5.4, contains a Cross-site scripting vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Dell Unity Operating Environment
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2024-0169 MEDIUM This Month

Dell Unity, version(s) 5.3 and prior, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Information Disclosure Dell Unity Operating Environment
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2024-1459 MEDIUM PATCH This Month

A path traversal vulnerability was found in Undertow. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Undertow
NVD
CVSS 3.1
5.3
EPSS
1.7%
CVE-2024-25360 MEDIUM This Month

A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the SystemWizardStatus component via sending a crafted request to device_web_ip. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cx2L Firmware
NVD GitHub
CVSS 3.1
5.3
EPSS
0.4%
CVE-2024-24929 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Ryan Duff, Peter Westwood WP Contact Form.6. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Wp Contact Form
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-24935 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in WpSimpleTools Basic Log Viewer.0.4. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Basic Log Viewer
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-24875 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Yannick Lefebvre Link Library.5.13. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Link Library
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-24884 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in ARI Soft Contact Form 7 Connector.2.2. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Contact Form 7 Connector
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-1439 LOW Monitor

Inadequate access control in Moodle LMS. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Moodle
NVD
CVSS 3.1
3.3
EPSS
0.3%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy