Description Prestashop opartlimitquantity 1.4.5 and before is vulnerable to SQL Injection. OpartlimitquantityAlertlimitModuleFrontController::displayAjaxPushAlertMessage()` has sensitive SQL calls that can be executed
Description A Buffer overflow vulnerability in DreamSecurity MagicLine4NX versions 1.0.0.1 to 1.0.0.26 allows an attacker to remotely execute code. References
Description Leave Management System Project v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The ‘setcasualleave’ parameter of the admin/setleaves.php
Description Under certain conditions, Nessus Network Monitor was found to not properly enforce input validation. This could allow an admin
Network Time Protocol (NTP) is a protocol used to synchronize the time across computer systems and networks. It ensures accurate
UDP (User Datagram Protocol) is a connectionless protocol that allows data transmission between devices on a network. It is often
Description vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network
JavaScript supply chain attacks involve the compromise of trusted JavaScript code libraries or components used in web applications. Attackers exploit
Description The affected product is vulnerable to an improper authentication vulnerability, which may allow an attacker to impersonate a legitimate
Description XXL-RPC is a high performance, distributed RPC framework. With it, a TCP server can be set up using the
Description Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due
Description Cisco is aware of active exploitation of a previously unknown vulnerability in the web UI feature of Cisco IOS
Description The Linux kernel before 6.5.4 has an es1 use-after-free in fs/ext4/extents_status.c, related to ext4_es_insert_extent. References https://lore.kernel.org/lkml/aa03f191-445c-0d2e-d6d7-0a3208d7df7a%40huawei.com/T/ https://www.spinics.net/lists/stable-commits/msg317086.html https://lkml.org/lkml/2023/8/13/477 https://github.com/torvalds/linux/commit/768d612f79822d30a1e7d132a4d4b05337ce42ec
Description Potential buffer overflow vulnerability in the Zephyr IEEE 802.15.4 nRF 15.4 driver. References https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-rf6q-rhhp-pqhf For More Information CVERecord
Why would your Business need VAPT? It is very necessary to conduct a network security audit periodically to ensure the
Description SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow an authenticated unprivileged
Description A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While
Description Election Services Co. (ESC) Internet Election Service is vulnerable to SQL injection in multiple pages and parameters. These vulnerabilities
Description IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1.19.0 could allow a local user
Strengthening Cybersecurity Together with Prophaze Partner Program In light of today’s complex threat landscape, it is becoming increasingly apparent that
Description Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Turna Advertising Administration Panel allows
Description Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation vulnerability. A remote unauthenticated attacker may
Description A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log in to an affected device
Description This vulnerability allows an authenticated attacker to upload malicious files by bypassing the restrictions of the upload functionality, compromising