CVE-2024-45663 : IBM DB2/DB2 CONNECT SERVER 11.1/11.5 QUERY DENIAL OF SERVICE
Description IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial
CVE-2024-52739 : D-LINK DI-8400 16.07.26A1 MSP_INFO_HTM CMD PRIVILEGE ESCALATION
Description D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (RCE) vulnerabilities in the msp_info_htm function via the
CVE-2024-52769 : DEDEBIZ 6.3.0 FILE /ADMIN/FRIENDLINK_EDIT UNRESTRICTED UPLOAD
Description An arbitrary file upload vulnerability in the component /admin/friendlink_edit of DedeBIZ v6.3.0 allows attackers to execute arbitrary code via
CVE-2024-10094 : PEGASYSTEMS PEGA INFINITY UP TO 24.1.1 CODE INJECTION
Description Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue with Improper Control of Generation of Code.
CVE-2024-9478 : UPKEEPER SOLUTIONS UPKEEPER INSTANT PRIVILEGE ACCESS UP TO 1.1 PRIVILEGES MANAGEMENT
Description Improper Privilege Management vulnerability in upKeeper Solutions upKeeper Instant Privilege Access allows Privilege Escalation.This issue affects upKeeper Instant Privilege
CVE-2024-11406 : DJANGO CMS ATTRIBUTES FIELDS UP TO 3.X CROSS SITE SCRIPTING
Description Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in django CMS Association django CMS
CVE-2024-10127 : M-FILES SERVER UP TO 24.10 OPENLDAP AUTHENTICATION INCORRECT IMPLEMENTATION OF AUTHENTICATION ALGORITHM
Description Authentication bypass condition in LDAP authentication in M-Files server versions before 24.11 supported usage of OpenLDAP configurations that allowed