CVE List - 2024 / November
Showing 401 - 500 of 4054 CVEs for November 2024 (Page 5 of 41)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-10805 | 2024-11-04 | code-projects University Event Management System doedit.php sql injection |
| CVE-2024-51502 | 2024-11-04 | Panic Vulnerability in loona-hpack |
| CVE-2024-51501 | 2024-11-04 | CRLF injection in Refit's [Header], [HeaderCollection] and [Authorize] attributes |
| CVE-2024-51500 | 2024-11-04 | Failure to check for packets from the broadcast address allows potential DDoS amplification attack in Meshtastic firmware |
| CVE-2024-51498 | 2024-11-04 | [@imput/cobalt-web] Cross-site Scripting when downloading picker image from malicious instance |
| CVE-2024-50346 | 2024-11-04 | WebFeed HTML injection vulnerabilities |
| CVE-2023-34443 | 2024-11-04 | Cross-site Scripting vulnerability in the run_query.php page in Combodo iTop |
| CVE-2023-34444 | 2024-11-04 | Cross-site Scripting vulnerability on pages/ajax.searchform.php in Combodo iTop |
| CVE-2023-34445 | 2024-11-04 | Cross-site Scripting vulnerability on pages/ajax.render.php in Combodo iTop |
| CVE-2024-31448 | 2024-11-04 | Cross-site Scripting vulnerability in link CSV import in Combodo iTop |
| CVE-2024-31998 | 2024-11-04 | CSRF security issue on CSV import in Combodo iTop |
| CVE-2024-32870 | 2024-11-04 | iTop hub connector Information disclosure |
| CVE-2024-48176 | 2024-11-05 | Lylme Spage v1.9.5 is vulnerable to Incorrect Access Control. There... |
| CVE-2024-48312 | 2024-11-05 | WebLaudos v20.8 (118) was discovered to contain a cross-site scripting... |
| CVE-2024-48746 | 2024-11-05 | An issue in Lens Visual integration with Power BI v.4.0.0.3... |
| CVE-2024-50993 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a command injection... |
| CVE-2024-50994 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow... |
| CVE-2024-50995 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow... |
| CVE-2024-50996 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-50997 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-50998 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow... |
| CVE-2024-50999 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a command injection... |
| CVE-2024-51000 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow... |
| CVE-2024-51001 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow... |
| CVE-2024-51002 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-51003 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-51004 | 2024-11-05 | Netgear R8500 v1.0.2.160 and R7000P v1.3.3.154 were discovered to multiple... |
| CVE-2024-51005 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a command injection... |
| CVE-2024-51006 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow... |
| CVE-2024-51007 | 2024-11-05 | Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow... |
| CVE-2024-51008 | 2024-11-05 | Netgear XR300 v1.0.3.78 was discovered to contain a command injection... |
| CVE-2024-51009 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a command injection... |
| CVE-2024-51010 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-51011 | 2024-11-05 | Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was... |
| CVE-2024-51012 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a stack overflow... |
| CVE-2024-51013 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow... |
| CVE-2024-51014 | 2024-11-05 | Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow... |
| CVE-2024-51015 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a command injection... |
| CVE-2024-51016 | 2024-11-05 | Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow... |
| CVE-2024-51017 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow... |
| CVE-2024-51018 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow... |
| CVE-2024-51019 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow... |
| CVE-2024-51020 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow... |
| CVE-2024-51021 | 2024-11-05 | Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was... |
| CVE-2024-51022 | 2024-11-05 | Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow... |
| CVE-2024-51023 | 2024-11-05 | D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection... |
| CVE-2024-51024 | 2024-11-05 | D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection... |
| CVE-2024-51115 | 2024-11-05 | DCME-320 v7.4.12.90 was discovered to contain a command injection vulnerability. |
| CVE-2024-51116 | 2024-11-05 | Tenda AC6 v2.0 V15.03.06.50 was discovered to contain a buffer... |
| CVE-2024-51132 | 2024-11-05 | An XML External Entity (XXE) vulnerability in HAPI FHIR before... |
| CVE-2024-51240 | 2024-11-05 | An issue in the luci-mod-rpc package in OpenWRT Luci LTS... |
| CVE-2024-51358 | 2024-11-05 | An issue in Linux Server Heimdall v.2.6.1 allows a remote... |
| CVE-2024-51362 | 2024-11-05 | The LSC Smart Connect Indoor IP Camera V7.6.32 is vulnerable... |
| CVE-2024-51379 | 2024-11-05 | Stored Cross-Site Scripting (XSS) vulnerability discovered in JATOS v3.9.3. The... |
| CVE-2024-51380 | 2024-11-05 | Stored Cross-Site Scripting (XSS) vulnerability discovered in the Properties Component... |
| CVE-2024-51381 | 2024-11-05 | Cross-Site Request Forgery (CSRF) vulnerability in JATOS v3.9.3 that allows... |
| CVE-2024-51382 | 2024-11-05 | Cross-Site Request Forgery (CSRF) vulnerability in JATOS v3.9.3 allows an... |
| CVE-2024-52013 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-52014 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-52015 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-52016 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-52017 | 2024-11-05 | Netgear XR300 v1.0.3.78 was discovered to contain a stack overflow... |
| CVE-2024-52018 | 2024-11-05 | Netgear XR300 v1.0.3.78 was discovered to contain a command injection... |
| CVE-2024-52019 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a command injection... |
| CVE-2024-52020 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a command injection... |
| CVE-2024-52021 | 2024-11-05 | Netgear R8500 v1.0.2.160 was discovered to contain a command injection... |
| CVE-2024-52022 | 2024-11-05 | Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2... |
| CVE-2024-52023 | 2024-11-05 | Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was... |
| CVE-2024-52024 | 2024-11-05 | Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was... |
| CVE-2024-52025 | 2024-11-05 | Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was... |
| CVE-2024-52026 | 2024-11-05 | Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was... |
| CVE-2024-52028 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow... |
| CVE-2024-52029 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow... |
| CVE-2024-52030 | 2024-11-05 | Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow... |
| CVE-2024-10806 | 2024-11-05 | PHPGurukul Hospital Management System betweendates-detailsreports.php cross site scripting |
| CVE-2024-10807 | 2024-11-05 | PHPGurukul Hospital Management System search.php cross site scripting |
| CVE-2024-10808 | 2024-11-05 | code-projects E-Health Care System req_detail.php sql injection |
| CVE-2024-10809 | 2024-11-05 | code-projects E-Health Care System chat.php sql injection |
| CVE-2024-10810 | 2024-11-05 | code-projects E-Health Care System app_request.php sql injection |
| CVE-2024-10340 | 2024-11-05 | Shortcodes Blocks Creator Ultimate <= 2.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode |
| CVE-2024-9459 | 2024-11-05 | SQL Injection |
| CVE-2024-5578 | 2024-11-05 | Table of Contents Plus <= 2408 - Editor+ Stored XSS |
| CVE-2024-7876 | 2024-11-05 | Appointment Booking Calendar < 1.6.7.55 - Admin+ Stored XSS |
| CVE-2024-7877 | 2024-11-05 | Appointment Booking Calendar < 1.6.7.55 - Admin+ Stored XSS |
| CVE-2024-9689 | 2024-11-05 | Post From Frontend <= 1.0.0 - Post Deletion via CSRF |
| CVE-2024-9883 | 2024-11-05 | Pods < 3.2.7.1 - Admin+ Stored XSS |
| CVE-2024-10097 | 2024-11-05 | Loginizer Security and Loginizer <= 1.9.2 - Authentication Bypass via WordPress.com OAuth provider |
| CVE-2024-47797 | 2024-11-05 | Liteos_a has an out-of-bounds Write vulnerability |
| CVE-2024-47404 | 2024-11-05 | Liteos_a has a double free vulnerability |
| CVE-2024-47137 | 2024-11-05 | Liteos_a has an out-of-bounds Write vulnerability |
| CVE-2024-47402 | 2024-11-05 | Liteos_a has an Out-of-bounds Read vulnerability |
| CVE-2024-51510 | 2024-11-05 | Out-of-bounds access vulnerability in the logo module Impact: Successful exploitation... |
| CVE-2024-9443 | 2024-11-05 | Basticom Framework <= 1.5.0 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload |
| CVE-2024-10114 | 2024-11-05 | Social Login - WordPress / WooCommerce Plugin <= 2.7.7 - Authentication Bypass via WordPress.com OAuth provider |
| CVE-2024-10711 | 2024-11-05 | WooCommerce Report <= 1.5.1 - Cross-Site Request Forgery to Arbitrary Options Update |
| CVE-2024-9667 | 2024-11-05 | Seriously Simple Podcasting <= 3.5.0 - Reflected Cross-Site Scripting via add_query_arg Parameter |
| CVE-2024-51511 | 2024-11-05 | Vulnerability of parameter type not being verified in the WantAgent... |
| CVE-2024-51512 | 2024-11-05 | Vulnerability of parameter type not being verified in the WantAgent... |
| CVE-2024-51513 | 2024-11-05 | Vulnerability of processes not being fully terminated in the VPN... |
| CVE-2024-51514 | 2024-11-05 | Vulnerability of pop-up windows belonging to no app in the... |