Alireza Gharib Blog

CVE ID : CVE-2024-55538 Published : Jan. 2, 2025, 3:15 p.m. | 54 minutes ago Description : Sensitive information disclosure due to missing authentication. The following products are affected: Acronis True Image (macOS) before build 41725, Acronis True Image (Windows) before build 41736. Severity: 4.0 | MEDIUM Visit the link for more details, such as CVSS…

CVE ID : CVE-2024-49385 Published : Jan. 2, 2025, 3:15 p.m. | 54 minutes ago Description : Sensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis True Image (Windows) before build 41736. Severity: 5.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more……

CVE ID : CVE-2023-48758 Published : Jan. 2, 2025, 3:15 p.m. | 55 minutes ago Description : Missing Authorization vulnerability in Crocoblock JetEngine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JetEngine: from n/a through 3.2.4. Severity: 7.1 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and…

CVE ID : CVE-2023-48739 Published : Jan. 2, 2025, 3:15 p.m. | 55 minutes ago Description : Missing Authorization vulnerability in Porto Theme Porto Theme – Functionality allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Porto Theme – Functionality: from n/a before 2.12.1. Severity: 5.3 | MEDIUM Visit the link for more details, such…

CVE ID : CVE-2023-47807 Published : Jan. 2, 2025, 3:15 p.m. | 55 minutes ago Description : Missing Authorization vulnerability in 10Web 10WebAnalytics allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 10WebAnalytics: from n/a through 1.2.12. Severity: 4.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and…

CVE ID : CVE-2023-47778 Published : Jan. 2, 2025, 3:15 p.m. | 55 minutes ago Description : Missing Authorization vulnerability in LuckyWP LuckyWP Scripts Control allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LuckyWP Scripts Control: from n/a through 1.2.1. Severity: 4.3 | MEDIUM Visit the link for more details, such as CVSS details,…

CVE ID : CVE-2023-45633 Published : Jan. 2, 2025, 3:15 p.m. | 55 minutes ago Description : Missing Authorization vulnerability in IDX IMPress Listings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects IMPress Listings: from n/a through 2.6.2. Severity: 6.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products,…

CVE ID : CVE-2023-45272 Published : Jan. 2, 2025, 3:15 p.m. | 55 minutes ago Description : Missing Authorization vulnerability in 10Web 10Web Map Builder for Google Maps allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 10Web Map Builder for Google Maps: from n/a through 1.0.73. Severity: 5.4 | MEDIUM Visit the link for…

CVE ID : CVE-2024-39623 Published : Jan. 2, 2025, 1:15 p.m. | 2 hours, 55 minutes ago Description : Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro allows Authentication Bypass.This issue affects ListingPro: from n/a through 2.9.4. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more… Go…

CVE-2024-12108: Progress WhatsUp Gold Vulnerability CVE-2024-12108 with a CVSS score of 9.6 is a critical security vulnerability affecting WhatsUp Gold, a network monitoring software developed by Progress Software Corporation.Affected VersionsThe vulne … Read more Published Date: Jan 02, 2025 (2 hours, 10 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-12108 CVE-2024-12987 CVE-2024-49112 CVE-2024-21182 Go to…