-
CVE-2024-45662 – IBM Safer Payments Denial of Service
CVE ID : CVE-2024-45662 Published : Jan. 18, 2025, 5:15 p.m. | 13 hours, 53 minutes ago Description : IBM Safer Payments 6.4.0.00 through 6.4.2.07, 6.5.0.00 through 6.5.0.05, and 6.6.0.00 through 6.6.0.03 could allow a remote attacker to cause a denial of service due to improper allocation of resources. Severity: 7.5 | HIGH Visit the link for more…
-
CVE-2024-49824 – IBM Robotic Process Automation Privilege Escalation Vulnerability
CVE ID : CVE-2024-49824 Published : Jan. 18, 2025, 4:15 p.m. | 14 hours, 52 minutes ago Description : IBM Robotic Process Automation 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 and IBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 could allow an authenticated user to perform unauthorized actions as a privileged…
-
CVE-2024-49354 – IBM Concert Information Disclosure Vulnerability
CVE ID : CVE-2024-49354 Published : Jan. 18, 2025, 4:15 p.m. | 14 hours, 52 minutes ago Description : IBM Concert 1.0.0, 1.0.1, and 1.0.2 is vulnerable to sensitive information disclosure through specially crafted API Calls. Severity: 5.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more… Go to…
-
CVE-2024-47113 – IBM ICP Voice Gateway XML Injection
CVE ID : CVE-2024-47113 Published : Jan. 18, 2025, 4:15 p.m. | 14 hours, 52 minutes ago Description : IBM ICP – Voice Gateway 1.0.2, 1.0.2.4, 1.0.3, 1.0.4, 1.0.5, 1.0.6. 1.0.7, 1.0.7.1, and 1.0.8 could allow remote attacker to send specially crafted XML statements, which would allow them to attacker to view or modify information in the XML…
-
CVE-2024-13375 – “Adifier System WordPress Plugin Authentication Bypass”
CVE ID : CVE-2024-13375 Published : Jan. 18, 2025, 9:15 a.m. | 21 hours, 53 minutes ago Description : The Adifier System plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.1.7. This is due to the plugin not properly validating a user’s identity prior to updating their…
-
CVE-2025-23209 – Craft CMS Remote Code Execution Vulnerability
CVE ID : CVE-2025-23209 Published : Jan. 18, 2025, 1:15 a.m. | 1 day, 5 hours ago Description : Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. This is an remote code execution (RCE) vulnerability that affects Craft 4 and 5 installs where your security key has already been…
-
CVE-2023-50739 – Lexmark IPP Buffer Overflow Vulnerability
CVE ID : CVE-2023-50739 Published : Jan. 18, 2025, 12:15 a.m. | 1 day, 6 hours ago Description : A buffer overflow vulnerability has been identified in the Internet Printing Protocol (IPP) in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code. Severity: 8.8 | HIGH Visit the link for more details, such…
-
CVE-2024-57030 – Wegia XSS in Documentos Funcionario
CVE ID : CVE-2024-57030 Published : Jan. 17, 2025, 8:15 p.m. | 1 day, 10 hours ago Description : Wegia < 3.2.0 is vulnerable to Cross Site Scripting (XSS) in /geral/documentos_funcionario.php via the id parameter. Severity: 8.1 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more… Go to Source
-
CVE-2024-12757 – Nedap Librix Ecoreader Authenticated Remote Code Execution
CVE ID : CVE-2024-12757 Published : Jan. 17, 2025, 6:15 p.m. | 1 day, 12 hours ago Description : Nedap Librix Ecoreader is missing authentication for critical functions that could allow an unauthenticated attacker to potentially execute malicious code. Severity: 8.6 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and…
-
CVE-2024-12142 – Apache HTTP Server Information Disclosure and Modification Vulnerability
CVE ID : CVE-2024-12142 Published : Jan. 17, 2025, 11:15 a.m. | 1 day, 19 hours ago Description : CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of restricted web page, modification of web page and denial of service when specific web pages are modified and restricted functions are…