CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-53703	A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions mod_httprp library loaded by the Apache web server... Description: A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions mod_httprp library loaded by the Apache web server allows remote attackers to cause Stack-based buffer overflow and potentially lead to code execution. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53702	Use of cryptographically weak pseudo-random number generator (PRNG) vulnerability in the SonicWall SMA100 SSLVPN backup code generator that, in... Description: Use of cryptographically weak pseudo-random number generator (PRNG) vulnerability in the SonicWall SMA100 SSLVPN backup code generator that, in certain cases, can be predicted by an attacker, potentially exposing the generated secret. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53589	GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD (Binary File Descriptor) library's handling of tekhex format files. Description: GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD (Binary File Descriptor) library's handling of tekhex format files. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53523	JSFinder commit d70ab9bc5221e016c08cffaf0d9ac79646c90645 is vulnerable to Directory Traversal in the find_by_file function. Description: JSFinder commit d70ab9bc5221e016c08cffaf0d9ac79646c90645 is vulnerable to Directory Traversal in the find_by_file function. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53490	Favorites-web 1.3.0 favorites-web has a directory traversal vulnerability in SecurityFilter.java. Description: Favorites-web 1.3.0 favorites-web has a directory traversal vulnerability in SecurityFilter.java. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53472	WeGIA v3.2.0 was discovered to contain a Cross-Site Request Forgery (CSRF). Description: WeGIA v3.2.0 was discovered to contain a Cross-Site Request Forgery (CSRF). CVSS: LOW (0.0) EPSS Score: 0.05% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53471	Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/meio_pagamento.php of WeGIA v3.2.0 allows attackers to... Description: Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/meio_pagamento.php of WeGIA v3.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the id or name parameter. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53470	Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/gateway_pagamento.php of WeGIA v3.2.0 allows attackers to... Description: Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/gateway_pagamento.php of WeGIA v3.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the id or name parameter. CVSS: LOW (0.0) EPSS Score: 0.05% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53457	A stored cross-site scripting (XSS) vulnerability in the Device Settings section of LibreNMS v24.9.0 to v24.10.0 allows attackers to execute... Description: A stored cross-site scripting (XSS) vulnerability in the Device Settings section of LibreNMS v24.9.0 to v24.10.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Display Name parameter. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE December 6th, 2024 (6 months ago)
CVE-2024-53442	whapa v1.59 is vulnerable to Command Injection via a crafted filename to the HTML reports component. Description: whapa v1.59 is vulnerable to Command Injection via a crafted filename to the HTML reports component. CVSS: LOW (0.0) EPSS Score: 0.04% Source: CVE December 6th, 2024 (6 months ago)