CVE List - 2024 / March
Showing 601 - 700 of 3300 CVEs for March 2024 (Page 7 of 33)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-1299 | 2024-03-07 | Privilege Chaining in GitLab |
| CVE-2024-0199 | 2024-03-07 | Incorrect Authorization in GitLab |
| CVE-2024-0817 | 2024-03-07 | Command injection in IrGraph.draw in paddlepaddle/paddle 2.6.0 |
| CVE-2024-1443 | 2024-03-07 | MSI Afterburner v4.6.5.16370 - Denial of Service |
| CVE-2024-1460 | 2024-03-07 | MSI Afterburner v4.6.5.16370 - Kernel Memory Leak |
| CVE-2024-0815 | 2024-03-07 | Command injection in paddle.utils.download._wget_download (bypass filter) in paddlepaddle/paddle 2.6.0 |
| CVE-2024-28094 | 2024-03-07 | Blind SQL Injection in Chat functionality in Schoolbox |
| CVE-2024-28095 | 2024-03-07 | Stored Cross-site Scripting in News functionality in Schoolbox |
| CVE-2024-28096 | 2024-03-07 | Stored Cross-site Scripting in Class functionality in Schoolbox |
| CVE-2024-28097 | 2024-03-07 | Stored Cross-site Scripting in Calendar functionality in Schoolbox |
| CVE-2024-1761 | 2024-03-07 | The WP Chat App plugin for WordPress is vulnerable to... |
| CVE-2024-28211 | 2024-03-07 | nGrinder before 3.5.9 allows connection to malicious JMX/RMI server by... |
| CVE-2024-28212 | 2024-03-07 | nGrinder before 3.5.9 uses old version of SnakeYAML, which could... |
| CVE-2024-28213 | 2024-03-07 | nGrinder before 3.5.9 allows to accept serialized Java objects from... |
| CVE-2024-28214 | 2024-03-07 | nGrinder before 3.5.9 allows to set delay without limitation, which... |
| CVE-2024-28215 | 2024-03-07 | nGrinder before 3.5.9 allows an attacker to create or update... |
| CVE-2024-28216 | 2024-03-07 | nGrinder before 3.5.9 allows an attacker to obtain the results... |
| CVE-2023-51395 | 2024-03-07 | Z-Wave S0 Decryption Vulnerability in End Devices |
| CVE-2024-1366 | 2024-03-07 | The Happy Addons for Elementor plugin for WordPress is vulnerable... |
| CVE-2024-1720 | 2024-03-07 | The User Registration – Custom Registration Form, Login Form, and... |
| CVE-2024-1500 | 2024-03-07 | The Royal Elementor Addons and Templates plugin for WordPress is... |
| CVE-2024-1377 | 2024-03-07 | The Happy Addons for Elementor plugin for WordPress is vulnerable... |
| CVE-2024-1506 | 2024-03-07 | The Prime Slider – Addons For Elementor plugin for WordPress... |
| CVE-2024-1419 | 2024-03-07 | The The Plus Addons for Elementor plugin for WordPress is... |
| CVE-2024-0917 | 2024-03-07 | remote code execution in paddlepaddle/paddle 2.6.0 |
| CVE-2023-42662 | 2024-03-07 | JFrog Artifactory Improper SSO Mechanism may lead to Exposure of Access Tokens |
| CVE-2024-2136 | 2024-03-07 | The WPKoi Templates for Elementor plugin for WordPress is vulnerable... |
| CVE-2024-1382 | 2024-03-07 | The Restaurant Reservations plugin for WordPress is vulnerable to Local... |
| CVE-2024-1931 | 2024-03-07 | Denial of service when trimming EDE text on positive replies |
| CVE-2024-1534 | 2024-03-07 | The Booster for WooCommerce plugin for WordPress is vulnerable to... |
| CVE-2024-22256 | 2024-03-07 | VMware Cloud Director contains a partial information disclosure vulnerability. A... |
| CVE-2024-1170 | 2024-03-07 | The Post Form – Registration Form – Profile Form for... |
| CVE-2024-1169 | 2024-03-07 | The Post Form – Registration Form – Profile Form for... |
| CVE-2024-28228 | 2024-03-07 | In JetBrains YouTrack before 2024.1.25893 creation comments on behalf of... |
| CVE-2024-28229 | 2024-03-07 | In JetBrains YouTrack before 2024.1.25893 user without appropriate permissions could... |
| CVE-2024-28230 | 2024-03-07 | In JetBrains YouTrack before 2024.1.25893 attaching/detaching workflow to a project... |
| CVE-2024-0818 | 2024-03-07 | Arbitrary File Overwrite Via Path Traversal in paddlepaddle/paddle before 2.6 |
| CVE-2024-2245 | 2024-03-07 | Cross-Site Scripting vulnerability in moziloCMS |
| CVE-2024-2241 | 2024-03-07 | Improper access control in the user interface in Devolutions Workspace... |
| CVE-2023-42661 | 2024-03-07 | JFrog Artifactory Improper input validation leads to arbitrary file write |
| CVE-2023-42509 | 2024-03-07 | JFrog Artifactory Sensitive Data Leakage in Repository configuration process |
| CVE-2023-48725 | 2024-03-07 | A stack-based buffer overflow vulnerability exists in the JSON Parsing... |
| CVE-2024-1351 | 2024-03-07 | MongoDB Server may allow successful untrusted connection |
| CVE-2024-1442 | 2024-03-07 | User with permissions to create a data source can CRUD all data sources |
| CVE-2024-1773 | 2024-03-07 | The PDF Invoices and Packing Slips For WooCommerce plugin for... |
| CVE-2024-2128 | 2024-03-07 | The EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed... |
| CVE-2024-0203 | 2024-03-07 | The Digits plugin for WordPress is vulnerable to Cross-Site Request... |
| CVE-2024-2127 | 2024-03-07 | The Page Builder: Pagelayer – Drag and Drop website builder... |
| CVE-2024-1725 | 2024-03-07 | Kubevirt-csi: persistentvolume allows access to hcp's root node |
| CVE-2024-26167 | 2024-03-07 | Microsoft Edge for Android Spoofing Vulnerability |
| CVE-2023-46171 | 2024-03-07 | IBM DS8900F information disclosure |
| CVE-2023-46170 | 2024-03-07 | IBM DS8900F information disclosure |
| CVE-2024-1802 | 2024-03-07 | The EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed... |
| CVE-2024-1986 | 2024-03-07 | The Booster Elite for WooCommerce plugin for WordPress is vulnerable... |
| CVE-2023-46172 | 2024-03-07 | IBM DS8900F security bypass |
| CVE-2023-46169 | 2024-03-07 | IBM DS8900F file manipulation |
| CVE-2024-2044 | 2024-03-07 | Unsafe Deserialisation and Remote Code Execution by an Authenticated user in pgAdmin 4 |
| CVE-2024-28115 | 2024-03-07 | Privilege Escalation in FreeRTOS Kernel ARMv7-M MPU ports and ARMv8-M ports with MPU support enabled |
| CVE-2024-2264 | 2024-03-07 | keerti1924 PHP-MYSQL-User-Login-System login.php sql injection |
| CVE-2024-2265 | 2024-03-07 | keerti1924 PHP-MYSQL-User-Login-System login.sql inclusion of sensitive information in source code |
| CVE-2024-2266 | 2024-03-07 | keerti1924 Secret-Coder-PHP-Project Login Page login.php cross site scripting |
| CVE-2024-2267 | 2024-03-07 | keerti1924 Online-Book-Store-Website shop.php logic error |
| CVE-2024-2268 | 2024-03-07 | keerti1924 Online-Book-Store-Website unrestricted upload |
| CVE-2024-2269 | 2024-03-07 | keerti1924 Online-Book-Store-Website search.php sql injection |
| CVE-2024-2270 | 2024-03-07 | keerti1924 Online-Book-Store-Website signup.php cross site scripting |
| CVE-2024-2271 | 2024-03-07 | keerti1924 Online-Book-Store-Website HTTP POST Request shop.php sql injection |
| CVE-2024-2272 | 2024-03-07 | keerti1924 Online-Book-Store-Website HTTP POST Request home.php sql injection |
| CVE-2019-6268 | 2024-03-08 | RAD SecFlow-2 devices with Hardware 0202, Firmware 4.1.01.63, and U-Boot... |
| CVE-2024-25845 | 2024-03-08 | In the module "CD Custom Fields 4 Orders" (cdcustomfields4orders) <=... |
| CVE-2024-25848 | 2024-03-08 | In the module "Ever Ultimate SEO" (everpsseo) <= 8.1.2 from... |
| CVE-2024-26313 | 2024-03-08 | Archer Platform 6.x before 6.14 P2 HF2 (6.14.0.2.2) contains a... |
| CVE-2024-28753 | 2024-03-08 | RaspAP (aka raspap-webgui) through 3.0.9 allows remote attackers to read... |
| CVE-2024-28754 | 2024-03-08 | RaspAP (aka raspap-webgui) through 3.0.9 allows remote attackers to cause... |
| CVE-2024-25849 | 2024-03-08 | In the module "Make an offer" (makeanoffer) <= 1.7.1 from... |
| CVE-2024-26309 | 2024-03-08 | Archer Platform 6.x before 6.14 P2 HF2 (6.14.0.2.2) contains a... |
| CVE-2024-27612 | 2024-03-08 | Numbas editor before 7.3 mishandles editing of themes and extensions. |
| CVE-2024-27613 | 2024-03-08 | Numbas editor before 7.3 mishandles reading of themes and extensions. |
| CVE-2024-2274 | 2024-03-08 | Bdtask G-Prescription Gynaecology & OBS Consultation Software Prescription Dashboard Index cross site scripting |
| CVE-2024-2275 | 2024-03-08 | Bdtask G-Prescription Gynaecology & OBS Consultation Software OBS Patient/Gynee Prescription cross site scripting |
| CVE-2024-2276 | 2024-03-08 | Bdtask G-Prescription Gynaecology & OBS Consultation Software Edit Venue Page cross site scripting |
| CVE-2024-2277 | 2024-03-08 | Bdtask G-Prescription Gynaecology & OBS Consultation Software Password Reset change_password_save cross-site request forgery |
| CVE-2024-2281 | 2024-03-08 | boyiddha Automated-Mess-Management-System Setting index.php access control |
| CVE-2024-2282 | 2024-03-08 | boyiddha Automated-Mess-Management-System Login Page index.php sql injection |
| CVE-2024-23276 | 2024-03-08 | A logic issue was addressed with improved checks. This issue... |
| CVE-2024-23260 | 2024-03-08 | This issue was addressed by removing additional entitlements. This issue... |
| CVE-2024-23295 | 2024-03-08 | A permissions issue was addressed to help ensure Personas are... |
| CVE-2024-23283 | 2024-03-08 | A privacy issue was addressed with improved private data redaction... |
| CVE-2024-23240 | 2024-03-08 | The issue was addressed with improved checks. This issue is... |
| CVE-2024-23201 | 2024-03-08 | A permissions issue was addressed with additional restrictions. This issue... |
| CVE-2024-23257 | 2024-03-08 | The issue was addressed with improved memory handling. This issue... |
| CVE-2024-23216 | 2024-03-08 | A path handling issue was addressed with improved validation. This... |
| CVE-2024-23241 | 2024-03-08 | This issue was addressed through improved state management. This issue... |
| CVE-2024-23294 | 2024-03-08 | This issue was addressed by removing the vulnerable code. This... |
| CVE-2024-23277 | 2024-03-08 | The issue was addressed with improved checks. This issue is... |
| CVE-2023-28826 | 2024-03-08 | This issue was addressed with improved redaction of sensitive information.... |
| CVE-2024-23220 | 2024-03-08 | The issue was addressed with improved handling of caches. This... |
| CVE-2024-23293 | 2024-03-08 | This issue was addressed through improved state management. This issue... |
| CVE-2024-23285 | 2024-03-08 | This issue was addressed with improved handling of symlinks. This... |
| CVE-2024-23246 | 2024-03-08 | This issue was addressed by removing the vulnerable code. This... |
| CVE-2024-23250 | 2024-03-08 | An access issue was addressed with improved access restrictions. This... |