CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-57370	Cross Site Scripting vulnerability in sunnygkp10 Online Exam System master version allows a remote attacker to obtain sensitive information via the... Description: Cross Site Scripting vulnerability in sunnygkp10 Online Exam System master version allows a remote attacker to obtain sensitive information via the w parameter. EPSS Score: 0.05% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-57369	Clickjacking vulnerability in typecho v1.2.1. Description: Clickjacking vulnerability in typecho v1.2.1. EPSS Score: 0.05% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-57252	OtCMS <=V7.46 is vulnerable to Server-Side Request Forgery (SSRF) in /admin/read.php, which can Read system files arbitrarily. Description: OtCMS <=V7.46 is vulnerable to Server-Side Request Forgery (SSRF) in /admin/read.php, which can Read system files arbitrarily. EPSS Score: 0.04% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-57035	WeGIA v3.2.0 is vulnerable to SQL Injection viathe nextPage parameter in /controle/control.php. Description: WeGIA v3.2.0 is vulnerable to SQL Injection viathe nextPage parameter in /controle/control.php. EPSS Score: 0.04% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-57034	WeGIA < 3.2.0 is vulnerable to SQL Injection in query_geracao_auto.php via the query parameter. Description: WeGIA < 3.2.0 is vulnerable to SQL Injection in query_geracao_auto.php via the query parameter. EPSS Score: 0.04% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-57033	WeGIA < 3.2.0 is vulnerable to Cross Site Scripting (XSS) via the dados_addInfo parameter of documentos_funcionario.php. Description: WeGIA < 3.2.0 is vulnerable to Cross Site Scripting (XSS) via the dados_addInfo parameter of documentos_funcionario.php. EPSS Score: 0.04% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-57032	WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application does not validate the value of the old password,... Description: WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application does not validate the value of the old password, so it is possible to change the password by placing any value in the senha_antiga field. EPSS Score: 0.04% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-57031	WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the id_funcionario parameter. Description: WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the id_funcionario parameter. EPSS Score: 0.04% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-57030	Wegia < 3.2.0 is vulnerable to Cross Site Scripting (XSS) in /geral/documentos_funcionario.php via the id parameter. Description: Wegia < 3.2.0 is vulnerable to Cross Site Scripting (XSS) in /geral/documentos_funcionario.php via the id parameter. EPSS Score: 0.04% Source: CVE January 18th, 2025 (6 months ago)
CVE-2024-52870	Teradata Vantage Editor 1.0.1 is mostly intended for SQL database access and docs.teradata.com access, but provides unintended functionality... Description: Teradata Vantage Editor 1.0.1 is mostly intended for SQL database access and docs.teradata.com access, but provides unintended functionality (including Chromium Developer Tools) that can result in a client user accessing arbitrary remote websites. EPSS Score: 0.04% Source: CVE January 18th, 2025 (6 months ago)