This is a FREE service that contains information on publicly disclosed
Cybersecurity vulnerabilities based on data from the CVE® Program, please see the official
CVE website and
CVE List V5 on GitHub.
New
CVE-2023-49331 Zoho ManageEngine ADAudit Plus through 7251 allows SQL injection in the aggregate reports search option.CVE-2024-0401 ASUS OVPN RCE: ASUS routers supporting custom OpenVPN profiles are vulnerable to a code execution vulnerability. An authenticated and remote attacker can e...CVE-2024-4151 Improper Access Control in lunary-ai/lunary: An Improper Access Control vulnerability exists in lunary-ai/lunary version 1.2.2, where users can view and up...CVE-2024-2835 OpenText ArcSight Enterprise Security Manager and ArcSight Platform Stored XSS: A Stored Cross-Site Scripting (XSS) vulnerability has been identified in Op...CVE-2024-3482 OpenText ArcSight Enterprise Security Manager and ArcSight Platform Stored XSS: A Stored Cross-Site Scripting (XSS) vulnerability has been identified in Op...
Updated
CVE-2023-49331 Zoho ManageEngine ADAudit Plus through 7251 allows SQL injection in the aggregate reports search option.CVE-2024-34193 smanga 3.2.7 does not filter the file parameter at the PHP/get file flow.php interface, resulting in a path traversal vulnerability that can cause arbitrar...CVE-2024-35578 Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function formSetIptv.CVE-2024-35576 Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function formSetIptv.CVE-2024-35579 Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.city.vlan parameter in the function formSetIptv.