Search Results (365340 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-0550 1 Mintplexlabs 1 Anythingllm 2025-01-10 6.5 Medium
A user who is privileged already `manager` or `admin` can set their profile picture via the frontend API using a relative filepath to then user the PFP GET API to download any valid files. The attacker would have to have been granted privileged permissions to the system before executing this attack.
CVE-2023-34257 1 Bmc 1 Patrol Agent 2025-01-10 9.8 Critical
An issue was discovered in BMC Patrol through 23.1.00. The agent's configuration can be remotely modified (and, by default, authentication is not required). Some configuration fields related to SNMP (e.g., masterAgentName or masterAgentStartLine) result in code execution when the agent is restarted. NOTE: the vendor's perspective is "These are not vulnerabilities for us as we have provided the option to implement the authentication."
CVE-2023-33736 1 Dcatadmin 1 Dcat Admin 2025-01-10 5.4 Medium
A stored cross-site scripting (XSS) vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter.
CVE-2023-33735 1 Dlink 2 Dir-846, Dir-846 Firmware 2025-01-10 9.8 Critical
D-Link DIR-846 v1.00A52 was discovered to contain a remote command execution (RCE) vulnerability via the tomography_ping_address parameter in the /HNAP1 interface.
CVE-2023-33732 1 Escanav 1 Escan Management Console 2025-01-10 6.1 Medium
Cross Site Scripting (XSS) in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote attacker to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval.
CVE-2023-33730 1 Escanav 1 Escan Management Console 2025-01-10 9.8 Critical
Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote attacker to retrieve password of any admin or normal user in plain text format.
CVE-2023-33722 1 Edimax 2 Br-6288acl, Br-6288acl Firmware 2025-01-10 8.8 High
EDIMAX BR-6288ACL v1.12 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the pppUserName parameter.
CVE-2023-33718 1 Mp4v2 Project 1 Mp4v2 2025-01-10 8.8 High
mp4v2 v2.1.3 was discovered to contain a memory leak via MP4File::ReadString() at mp4file_io.cpp
CVE-2023-33643 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the AddWlanMacList interface at /goform/aspForm.
CVE-2023-33642 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the Edit_BasicSSID interface at /goform/aspForm.
CVE-2023-33641 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the AddMacList interface at /goform/aspForm.
CVE-2023-33640 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the SetAPWifiorLedInfoById interface at /goform/aspForm.
CVE-2023-33639 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the SetMobileAPInfoById interface at /goform/aspForm.
CVE-2023-33638 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the Edit_BasicSSID_5G interface at /goform/aspForm.
CVE-2023-33637 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the DelDNSHnList interface at /goform/aspForm.
CVE-2023-33636 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the ipqos_lanip_editlist interface at /goform/aspForm.
CVE-2023-33635 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateMacClone interface at /goform/aspForm.
CVE-2023-33634 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the EdittriggerList interface at /goform/aspForm.
CVE-2023-33627 1 H3c 2 Magic R300-2100m, Magic R300-2100m Firmware 2025-01-10 7.2 High
H3C Magic R300 version R300-2100MV100R004 was discovered to contain a stack overflow via the UpdateSnat interface at /goform/aspForm.
CVE-2024-34697 1 Freescout 1 Freescout 2025-01-10 7.6 High
FreeScout is a free, self-hosted help desk and shared mailbox. A stored HTML Injection vulnerability has been identified in the Email Receival Module of the Freescout Application. The vulnerability allows attackers to inject malicious HTML content into emails sent to the application's mailbox. This vulnerability arises from improper handling of HTML content within incoming emails, allowing attackers to embed malicious HTML code in the context of the application's domain. Unauthenticated attackers can exploit this vulnerability to inject malicious HTML content into emails. This could lead to various attacks such as form hijacking, application defacement, or data exfiltration via CSS injection. Although unauthenticated attackers are limited to HTML injection, the consequences can still be severe. Version 1.8.139 implements strict input validation and sanitization mechanisms to ensure that any HTML content received via emails is properly sanitized to prevent malicious HTML injections.