CVE-2024-7711 : GITHUB ENTERPRISE SERVER UP TO 3.11.13/3.12.7/3.13.2 AUTHORIZATION

Description An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server, allowing an attacker to update the title, assignees, and

Description An improper access control vulnerability in the Azure Managed Instance for Apache Cassandra allows an authenticated attacker to elevate

Description LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running on resource-constraint edge devices. A

Description MEGABOT is a fully customized Discord bot for learning and fun. The `/math` command and functionality of MEGABOT versions

Description In TRENDnet TEW-752DRU FW1.03B01, there is a buffer overflow vulnerability due to the lack of length verification for the

Description In the TP-Link RE365 V1_180213, there is a buffer overflow vulnerability due to the lack of length verification for

Description There is a LOW severity vulnerability affecting CPython, specifically the ‘http.cookies’ standard library module. When parsing cookies that contained

Description XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It is

Description A Command Injection vulnerability exists in the do_upgrade_post function of the httpd binary in Linksys E1500 v1.0.06.001. As a

Description Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic

Description TruffleHog is a secrets scanning tool. Prior to v3.81.9, this vulnerability allows a malicious actor to craft data in

Description A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326,

Description A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some

Description In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix invalid memory access while processing fragmented

Description Like many other SSH implementations, Apache MINA SSHD suffered from the issue that is more widely known as CVE-2023-48795.

Description The Open eClass platform (formerly known as GUnet eClass) is a complete Course Management System. An arbitrary file upload

Description Authentication Bypass Using an Alternate Path or Channel vulnerability in GST Electronics inohom Nova Panel N7 allows Authentication Bypass.

Description Microsoft Office Spoofing Vulnerability. References https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38200 For More Information CVERecord

Description Microsoft Edge (HTML-based) Memory Corruption Vulnerability. References https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38218 For More Information CVERecord

Description The InfoScan client download page can be intercepted with a proxy, to expose filenames located on the system, which

Description VRCX is an assistant/companion application for VRChat. In versions prior to 2024.03.23, a CefSharp browser with over-permission and cross-site

Description NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user

Description Asterisk is an open source private branch exchange (PBX) and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and