diff --git a/cache/Tenable (Nessus).dat b/cache/Tenable (Nessus).dat index 171b3894a29..851bfdf82c0 100644 --- a/cache/Tenable (Nessus).dat +++ b/cache/Tenable (Nessus).dat @@ -162,3 +162,13 @@ ae5f13c37bdb62da328ec37259df0c20 013cc1f619d0e360a5b60ac02e2d2ba5 986cbe64b36bd574405222eeeb27de1f 385cc7886317f397410f62dc190ce97b +26f52e08314e09b9d2c93d1e013424fb +3f725f35496ef3834518e7def96780b8 +afa05246475a6eb58e281fe67ab5dfed +8081ffc69c843827a239f1be21e916c4 +6466a855b952a9a8ecad4e010eb5f429 +81510a57672b6b7c26da6eb5cbfceda6 +781eccd878212e67c51af0cf98725192 +5ce0a9fa05c70f2f44c2741ac0dda9d3 +6a1a416bb27840943f632e63184a6bf2 +8d4f7bffbad5e10ee5c0516d2813a380 diff --git a/data/cves.db b/data/cves.db index a198b308ec8..e3347523821 100644 Binary files a/data/cves.db and b/data/cves.db differ diff --git a/docs/index.html b/docs/index.html index 98f0928bfe3..aec2e5a24f0 100644 --- a/docs/index.html +++ b/docs/index.html @@ -1,4 +1,4 @@ - + @@ -283,6 +283,86 @@

眈眈探求 | TITLE URL + + 26f52e08314e09b9d2c93d1e013424fb + CVE-2024-11998 + 2024-11-30 09:31:04 + A vulnerability was found in code-projects Farmacia 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /visualizer-forneccedor.chp. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. + 详情 + + + + 3f725f35496ef3834518e7def96780b8 + CVE-2024-11997 + 2024-11-30 08:15:05 + A vulnerability was found in code-projects Farmacia 1.0. It has been classified as problematic. This affects an unknown part of the file /vendas.php. The manipulation of the argument notaFiscal leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. + 详情 + + + + afa05246475a6eb58e281fe67ab5dfed + CVE-2024-11996 + 2024-11-30 08:15:03 + A vulnerability was found in code-projects Farmacia 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /editar-fornecedor.php. The manipulation of the argument cidade leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. + 详情 + + + + 8081ffc69c843827a239f1be21e916c4 + CVE-2024-11252 + 2024-11-30 06:15:17 + The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the heateor_mastodon_share parameter in all versions up to, and including, 3.3.69 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. + 详情 + + + + 6466a855b952a9a8ecad4e010eb5f429 + CVE-2024-43703 + 2024-11-30 03:15:14 + Software installed and run as a non-privileged user may conduct improper GPU system calls to achieve unauthorised reads and writes of physical memory from the GPU HW. + 详情 + + + + 81510a57672b6b7c26da6eb5cbfceda6 + CVE-2024-43702 + 2024-11-30 03:15:13 + Software installed and run as a non-privileged user may conduct improper GPU system calls to allow unprivileged access to arbitrary physical memory page. + 详情 + + + + 781eccd878212e67c51af0cf98725192 + CVE-2024-53623 + 2024-11-29 23:15:04 + Incorrect access control in the component l_0_0.xml of TP-Link ARCHER-C7 v5 allows attackers to access sensitive information. + 详情 + + + + 5ce0a9fa05c70f2f44c2741ac0dda9d3 + CVE-2024-54159 + 2024-11-29 22:15:07 + stalld through 1.19.7 allows local users to cause a denial of service (file overwrite) via a /tmp/rtthrottle symlink attack. + 详情 + + + + 6a1a416bb27840943f632e63184a6bf2 + CVE-2024-11995 + 2024-11-29 21:15:04 + A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /pagamento.php. The manipulation of the argument total leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. + 详情 + + + + 8d4f7bffbad5e10ee5c0516d2813a380 + CVE-2024-53507 + 2024-11-29 20:15:21 + A SQL injection vulnerability was discovered in Siyuan 3.1.11 in /getHistoryItems. + 详情 + + d216fae7966329e95d51f2cabd12bbc8 CVE-2024-47094 @@ -366,7 +446,7 @@

眈眈探求 | + 2024-11-28 09:47:12 The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the hypeanimations_panel() function in all versions up to, and including, 1.9.15. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. 详情 @@ -374,7 +454,7 @@

眈眈探求 | + 2024-11-28 09:47:12 The Restaurant & Cafe Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.9 via the 'narestaurant_elementor_template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from private or draft posts created by Elementor that they should not have access to. 详情 @@ -382,7 +462,7 @@

眈眈探求 | + 2024-11-28 09:47:11 The Widget Options – The #1 WordPress Widget & Block Control Plugin plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.0.7 via the display logic functionality that extends several page builders. This is due to the plugin allowing users to supply input that will be passed through eval() without any filtering or capability checks. This makes it possible for authenticated attackers, with contributor-level access and above, to execute code on the server. Special note: We suggested the vendor implement an allowlist of functions and limit the ability to execute commands to just administrators, however, they did not take our advice. We are considering this patched, however, we believe it could still be further hardened and there may be residual risk with how the issue is currently patched. 详情 @@ -390,7 +470,7 @@

眈眈探求 | + 2024-11-28 09:47:11 The Primary Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.2 via the [prim_elementor_template] shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from private or draft posts created with Elementor that they should not have access to. 详情 @@ -398,7 +478,7 @@

眈眈探求 | + 2024-11-28 09:47:10 The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.7.1003 via the 'wpr-template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from private or draft posts created via Elementor that they should not have access to. 详情 @@ -406,7 +486,7 @@

眈眈探求 | + 2024-11-28 09:47:09 The Contest Gallery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 24.0.7. This is due to the plugin not properly validating a user's identity prior to updating their password. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account. 详情 @@ -414,7 +494,7 @@

眈眈探求 | + 2024-11-28 09:46:07 The uyuni-server-attestation systemd service needs a database_password environment variable. This file has 640 permission, and cannot be shown users, but the environment is still exposed by systemd to non-privileged users. 详情 @@ -422,7 +502,7 @@

眈眈探求 | + 2024-11-28 09:42:48 Mattermost versions 10.0.x <= 10.0.1, 10.1.x <= 10.1.1, 9.11.x <= 9.11.3, 9.5.x <= 9.5.11 fail to properly validate email addresses which allows an unauthenticated user to bypass email domain restrictions via carefully crafted input on email registration. 详情 @@ -430,7 +510,7 @@

眈眈探求 | + 2024-11-28 09:38:03 Various problems in obs-scm-bridge allows attackers that create specially crafted git repositories to leak information of cause denial of service. 详情 @@ -438,91 +518,11 @@

眈眈探求 | + 2024-11-28 09:26:38 A Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in the Setup Wizard, HTTP Proxy credentials pane in spacewalk-web allows attackers to attack users by providing specially crafted URLs to click. This issue affects Container suse/manager/5.0/x86_64/server:5.0.2.7.8.1: before 5.0.15-150600.3.10.2; SUSE Manager Server Module 4.3: before 4.3.42-150400.3.52.1. 详情 - - 2f727bde471b13c1ae2e14076ab3a4c8 - CVE-2024-52323 - 2024-11-27 09:54:07 - Zohocorp ManageEngine Analytics Plus versions below 6100 are vulnerable to authenticated sensitive data exposure which allows the users to retrieve sensitive tokens associated to the org-admin account. - 详情 - - - - 78c73790025e596e2f99c11661f97985 - CVE-2024-11667 - 2024-11-27 09:39:41 - A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware versions V5.00 through V5.38, USG FLEX series firmware versions V5.00 through V5.38, USG FLEX 50(W) series firmware versions V5.10 through V5.38, and USG20(W)-VPN series firmware versions V5.10 through V5.38 could allow an attacker to download or upload files via a crafted URL. - 详情 - - - - 33b86be4fda888a50ee1a76c72c90638 - CVE-2024-36467 - 2024-11-27 07:15:09 - An authenticated user with API access (e.g.: user with default User role), more specifically a user with access to the user.update API endpoint is enough to be able to add themselves to any group (e.g.: Zabbix Administrators), except to groups that are disabled or having restricted GUI access. - 详情 - - - - 1fb8e3c220dcc19f8a44aa1cb777b334 - CVE-2024-10895 - 2024-11-27 07:15:08 - The Counter Up – Animated Number Counter & Milestone Showcase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'lgx-counter' shortcode in all versions up to, and including, 2.4.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. - 详情 - - - - d768d0b6cf54837815bfaeb67117fc0b - CVE-2024-10580 - 2024-11-27 07:15:07 - The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to unauthorized form submissions due to a missing capability check on the submit_form() function in all versions up to, and including, 7.8.5. This makes it possible for unauthenticated attackers to submit unpublished forms. - 详情 - - - - 7a72c1f1369688b841eb91926443ca98 - CVE-2024-10175 - 2024-11-27 07:15:07 - The Pricing Tables For WPBakery Page Builder (formerly Visual Composer) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wdo_pricing_tables shortcode in all versions up to, and including, 1.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. - 详情 - - - - 77e99e99cdeb887bc152d7fc043686cb - CVE-2024-52959 - 2024-11-27 06:15:19 - A Improper Control of Generation of Code ('Code Injection') vulnerability in plugin management in iota C.ai Conversational Platform from 1.0.0 through 2.1.3 allows remote authenticated users to perform arbitrary system commands via a DLL file. - 详情 - - - - fda1b5c1d4095322a3e93a9067c98fad - CVE-2024-52958 - 2024-11-27 06:15:18 - A improper verification of cryptographic signature vulnerability in plugin management in iota C.ai Conversational Platform from 1.0.0 through 2.1.3 allows remote authenticated users to load a malicious DLL via upload plugin function. - 详情 - - - - 7e01b98183c1a6b72d5cc438a2ceab04 - CVE-2024-11219 - 2024-11-27 06:15:18 - The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 3.0.6 via the get_image function. This makes it possible for unauthenticated attackers to view arbitrary images on the server, which can contain sensitive information. - 详情 - - - - 58ee1c1a3573e58c2cbe62c68b43edef - CVE-2024-11083 - 2024-11-27 06:15:17 - The ProfilePress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.15.18 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extract sensitive data from posts that have been restricted to higher-level roles such as administrator. - 详情 - - @@ -2110,7 +2110,7 @@

眈眈探求 | + 2024-11-28 12:47:17 Autodesk AutoCAD越界写入漏洞 详情 @@ -2118,7 +2118,7 @@

眈眈探求 | + 2024-11-28 12:47:17 TRENDnet TEW-752DRU缓冲区溢出漏洞 详情 @@ -2126,7 +2126,7 @@

眈眈探求 | + 2024-11-28 12:47:17 D-Link DIR-860L缓冲区溢出漏洞 详情 @@ -2134,7 +2134,7 @@

眈眈探求 | + 2024-11-28 12:47:17 CPython CPU资源消耗漏洞 详情 @@ -2142,7 +2142,7 @@

眈眈探求 | + 2024-11-28 09:25:22 WordPress plugin SermonAudio Widgets SQL注入漏洞 详情 @@ -2150,7 +2150,7 @@

眈眈探求 | + 2024-11-28 09:25:22 WordPress plugin Back Link Tracker跨站请求伪造漏洞 详情 @@ -2158,7 +2158,7 @@

眈眈探求 | + 2024-11-28 09:25:22 Code-Projects Blood Bank System跨站脚本漏洞 详情 @@ -2166,7 +2166,7 @@

眈眈探求 | + 2024-11-28 09:25:22 PHPGurukul Boat Booking System SQL注入漏洞 详情 @@ -2174,7 +2174,7 @@

眈眈探求 | + 2024-11-28 09:25:22 SourceCodester Sentiment Based Movie Rating System SQL注入漏洞 详情 @@ -2182,7 +2182,7 @@

眈眈探求 | + 2024-11-28 09:25:22 WordPress plugin Product Website Showcase代码问题漏洞 详情 @@ -2190,7 +2190,7 @@

眈眈探求 | + 2024-11-28 09:25:22 WordPress plugin Simple User Registration身份验证绕过漏洞 详情 @@ -2198,7 +2198,7 @@

眈眈探求 | + 2024-11-28 09:25:22 WordPress plugin All in One Slider跨站脚本漏洞 详情 @@ -2206,7 +2206,7 @@

眈眈探求 | + 2024-11-28 09:25:22 Anuj Kumar Ifsc Code Finder Project跨站脚本漏洞 详情 @@ -2214,7 +2214,7 @@

眈眈探求 | + 2024-11-28 09:25:22 Codezips Sales Management System SQL注入漏洞 详情 @@ -2222,7 +2222,7 @@

眈眈探求 | + 2024-11-28 09:25:22 Ivanti远程代码执行漏洞 详情