CVE List - 2024 / November
Showing 301 - 400 of 4054 CVEs for November 2024 (Page 4 of 41)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-51328 | 2024-11-04 | Cross Site Scripting vulnerability in addcategory.php in projectworld's Travel Management... |
| CVE-2024-51329 | 2024-11-04 | A Host header injection vulnerability in Agile-Board 1.0 allows attackers... |
| CVE-2024-51408 | 2024-11-04 | AppSmith Community 1.8.3 before 1.46 allows SSRF via New DataSource... |
| CVE-2024-10747 | 2024-11-04 | PHPGurukul Online Shopping Portal dom_data_th.php cross site scripting |
| CVE-2024-10748 | 2024-11-04 | Cosmote Greece What's Up App Realm Database RealmDB.java default key |
| CVE-2024-10749 | 2024-11-04 | ThinkAdmin Plugs.php script deserialization |
| CVE-2024-10750 | 2024-11-04 | Tenda i22 SysToo websReadEvent null pointer dereference |
| CVE-2024-10751 | 2024-11-04 | Codezips ISP Management System pay.php sql injection |
| CVE-2024-10752 | 2024-11-04 | Codezips Pet Shop Management System productsadd.php sql injection |
| CVE-2024-20104 | 2024-11-04 | In da, there is a possible out of bounds write... |
| CVE-2024-20106 | 2024-11-04 | In m4u, there is a possible out of bounds write... |
| CVE-2024-20107 | 2024-11-04 | In da, there is a possible out of bounds read... |
| CVE-2024-20108 | 2024-11-04 | In atci, there is a possible out of bounds write... |
| CVE-2024-20109 | 2024-11-04 | In ccu, there is a possible out of bounds write... |
| CVE-2024-20110 | 2024-11-04 | In ccu, there is a possible out of bounds write... |
| CVE-2024-20111 | 2024-11-04 | In ccu, there is a possible out of bounds write... |
| CVE-2024-20112 | 2024-11-04 | In isp, there is a possible out of bounds read... |
| CVE-2024-20113 | 2024-11-04 | In ccu, there is a possible out of bounds write... |
| CVE-2024-20114 | 2024-11-04 | In ccu, there is a possible out of bounds write... |
| CVE-2024-20115 | 2024-11-04 | In ccu, there is a possible out of bounds write... |
| CVE-2024-20117 | 2024-11-04 | In vdec, there is a possible out of bounds read... |
| CVE-2024-20118 | 2024-11-04 | In mms, there is a possible out of bounds write... |
| CVE-2024-20119 | 2024-11-04 | In mms, there is a possible out of bounds write... |
| CVE-2024-20120 | 2024-11-04 | In KeyInstall, there is a possible out of bounds write... |
| CVE-2024-20121 | 2024-11-04 | In KeyInstall, there is a possible out of bounds write... |
| CVE-2024-20122 | 2024-11-04 | In vdec, there is a possible out of bounds read... |
| CVE-2024-20123 | 2024-11-04 | In vdec, there is a possible out of bounds read... |
| CVE-2024-20124 | 2024-11-04 | In vdec, there is a possible out of bounds read... |
| CVE-2024-10753 | 2024-11-04 | PHPGurukul Online Shopping Portal dom_data_two_headers.php cross site scripting |
| CVE-2024-10754 | 2024-11-04 | PHPGurukul Online Shopping Portal dymanic_table.php cross site scripting |
| CVE-2024-10755 | 2024-11-04 | PHPGurukul Online Shopping Portal empty_table.php cross site scripting |
| CVE-2024-10756 | 2024-11-04 | PHPGurukul Online Shopping Portal html_table.php cross site scripting |
| CVE-2024-10757 | 2024-11-04 | PHPGurukul Online Shopping Portal js_data.php cross site scripting |
| CVE-2024-10758 | 2024-11-04 | code-projects/anirbandutta9 Content Management System/News-Buzz index.php sql injection |
| CVE-2024-10759 | 2024-11-04 | itsourcecode Farm Management System edit-pig.php sql injection |
| CVE-2024-10760 | 2024-11-04 | code-projects University Event Management System dodelete.php sql injection |
| CVE-2024-10761 | 2024-11-04 | Umbraco CMS Dashboard frame cross site scripting |
| CVE-2024-23590 | 2024-11-04 | Apache Kylin: Session fixation in web interface |
| CVE-2024-23377 | 2024-11-04 | Use of Out-of-range Pointer Offset in ComputerVision |
| CVE-2024-23385 | 2024-11-04 | Reachable Assertion in Modem |
| CVE-2024-23386 | 2024-11-04 | Improper Input Validation in Video |
| CVE-2024-33029 | 2024-11-04 | Use After Free in DSP Services |
| CVE-2024-33030 | 2024-11-04 | Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in Performance |
| CVE-2024-33031 | 2024-11-04 | Improper Input Validation in RIL |
| CVE-2024-33032 | 2024-11-04 | Improper Validation of Array Index in Camera_Linux |
| CVE-2024-33033 | 2024-11-04 | Use After Free in ComputerVision |
| CVE-2024-33068 | 2024-11-04 | Use After Free in WLAN Host Communication |
| CVE-2024-38403 | 2024-11-04 | Buffer Over-read in WLAN Firmware |
| CVE-2024-38405 | 2024-11-04 | Buffer Over-read in WLAN Host |
| CVE-2024-38406 | 2024-11-04 | Time-of-check Time-of-use (TOCTOU) Race Condition in Camera |
| CVE-2024-38407 | 2024-11-04 | Time-of-check Time-of-use (TOCTOU) Race Condition in Camera |
| CVE-2024-38408 | 2024-11-04 | Cryptographic Issues in BT Controller |
| CVE-2024-38409 | 2024-11-04 | Buffer Copy Without Checking Size of Input in WLAN Windows Host |
| CVE-2024-38410 | 2024-11-04 | Stack-based Buffer Overflow in WLAN Windows Host |
| CVE-2024-38415 | 2024-11-04 | Use After Free in Computer Vision |
| CVE-2024-38419 | 2024-11-04 | Use After Free in Automotive GPU |
| CVE-2024-38421 | 2024-11-04 | Use After Free in Graphics Linux |
| CVE-2024-38422 | 2024-11-04 | Integer Overflow to Buffer Overflow in Audio |
| CVE-2024-38423 | 2024-11-04 | Buffer Copy Without Checking Size of Input in Graphics Linux |
| CVE-2024-38424 | 2024-11-04 | Use After Free in GPS |
| CVE-2024-10389 | 2024-11-04 | Path Traversal in Safearchive |
| CVE-2024-48878 | 2024-11-04 | SQL Injection |
| CVE-2024-51661 | 2024-11-04 | WordPress Media Library Assistant plugin <= 3.19 - Remote Code Execution (RCE) vulnerability |
| CVE-2024-36485 | 2024-11-04 | SQL Injection |
| CVE-2024-10035 | 2024-11-04 | Code Injection in BG-TEK's CoslatV3 |
| CVE-2024-10523 | 2024-11-04 | Information Disclosure Vulnerability in TP-Link IoT Smart Hub |
| CVE-2024-51556 | 2024-11-04 | Sensitive Information Disclosure Vulnerability in Wave 2.0 |
| CVE-2024-51557 | 2024-11-04 | No Rate Limiting Vulnerability in Wave 2.0 |
| CVE-2024-51558 | 2024-11-04 | Brute Force Attack Vulnerability in Wave 2.0 |
| CVE-2024-51559 | 2024-11-04 | Improper Access Control Vulnerability in Wave 2.0 |
| CVE-2024-51560 | 2024-11-04 | Improper Error Handling Vulnerability in Wave 2.0 |
| CVE-2024-51561 | 2024-11-04 | Authentication bypass Vulnerability in Aero |
| CVE-2024-9147 | 2024-11-04 | HTML Injection in Bna Informatics' PosPratik |
| CVE-2024-51665 | 2024-11-04 | WordPress Magical Addons For Elementor plugin <= 1.2.1 - Server Side Request Forgery (SSRF) vulnerability |
| CVE-2024-51582 | 2024-11-04 | WordPress WP Hotel Booking plugin <= 2.1.4 - Local File Inclusion vulnerability |
| CVE-2024-50531 | 2024-11-04 | WordPress RSVPMaker for Toastmasters plugin <= 6.2.4 - Arbitrary File Upload vulnerability |
| CVE-2024-50530 | 2024-11-04 | WordPress Stars SMTP Mailer plugin <= 1.7 - Arbitrary File Upload vulnerability |
| CVE-2024-50529 | 2024-11-04 | WordPress Training – Courses plugin <= 2.0.1 - Arbitrary File Upload vulnerability |
| CVE-2024-50527 | 2024-11-04 | WordPress Stacks Mobile App Builder plugin <= 5.2.3 - Arbitrary File Upload vulnerability |
| CVE-2024-50526 | 2024-11-04 | WordPress Multi Purpose Mail Form plugin <= 1.0.2 - Arbitrary File Upload vulnerability |
| CVE-2024-50525 | 2024-11-04 | WordPress Helloprint plugin <= 2.0.2 - Arbitrary File Upload vulnerability |
| CVE-2024-50523 | 2024-11-04 | WordPress All Post Contact Form plugin <= 1.7.3 - Arbitrary File Upload vulnerability |
| CVE-2024-50528 | 2024-11-04 | WordPress Stacks Mobile App Builder plugin <= 5.2.3 - Sensitive Data Exposure vulnerability |
| CVE-2024-51672 | 2024-11-04 | WordPress BetterLinks plugin <= 2.1.7 - SQL Injection vulnerability |
| CVE-2024-51626 | 2024-11-04 | WordPress Woocommerce Quote Calculator plugin <= 1.1 - SQL Injection vulnerability |
| CVE-2024-51685 | 2024-11-04 | WordPress Accordion title for Elementor plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-51683 | 2024-11-04 | WordPress Custom post type templates for Elementor plugin <= 1.10.1 - Stored Cross Site Scripting (XSS) vulnerability |
| CVE-2024-51682 | 2024-11-04 | WordPress HT Builder – WordPress Theme Builder for Elementor plugin <= 1.3.0 - Stored Cross Site Scripting (XSS) vulnerability |
| CVE-2024-51681 | 2024-11-04 | WordPress WP Pocket URLs plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-51680 | 2024-11-04 | WordPress Cresta Addons for Elementor plugin <= 1.0.9 - Stored Cross Site Scripting (XSS) vulnerability |
| CVE-2024-51678 | 2024-11-04 | WordPress Elo Rating Shortcode plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-51677 | 2024-11-04 | WordPress Knowledge Base plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2024-10764 | 2024-11-04 | Codezips Online Institute Management System save_user.php unrestricted upload |
| CVE-2024-10765 | 2024-11-04 | Codezips Online Institute Management System profile.php unrestricted upload |
| CVE-2024-10766 | 2024-11-04 | Codezips Free Exam Hall Seating Management System save_user.php unrestricted upload |
| CVE-2024-10768 | 2024-11-04 | PHPGurukul Online Shopping Portal two_tables.php cross site scripting |
| CVE-2024-45086 | 2024-11-04 | IBM WebSphere Application Server XML external entity injection |
| CVE-2024-10791 | 2024-11-04 | Codezips Hospital Appointment System doctorAction.php sql injection |
| CVE-2024-51744 | 2024-11-04 | Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations in golang-jwt |
| CVE-2024-51734 | 2024-11-04 | User data deletion by anoynmous users in Zope |