Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-22314 |
Description: IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.12 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
CVSS: MEDIUM (5.9) EPSS Score: 0.02%
April 16th, 2025 (6 days ago)
|
|
CVE-2024-2152 |
Description: A vulnerability, which was classified as critical, has been found in SourceCodester Online Mobile Management Store 1.0. Affected by this issue is some unknown functionality of the file /admin/product/manage_product.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-255584. Eine kritische Schwachstelle wurde in SourceCodester Online Mobile Management Store 1.0 entdeckt. Hierbei geht es um eine nicht exakt ausgemachte Funktion der Datei /admin/product/manage_product.php. Durch Beeinflussen des Arguments id mit unbekannten Daten kann eine sql injection-Schwachstelle ausgenutzt werden. Umgesetzt werden kann der Angriff über das Netzwerk. Der Exploit steht zur öffentlichen Verfügung.
CVSS: MEDIUM (4.7) EPSS Score: 0.05% SSVC Exploitation: poc
April 16th, 2025 (6 days ago)
|
|
CVE-2024-2133 |
Description: A vulnerability, which was classified as problematic, was found in Bdtask Isshue Multi Store eCommerce Shopping Cart Solution 4.0. This affects an unknown part of the file /dashboard/Cinvoice/manage_invoice of the component Manage Sale Page. The manipulation of the argument Title leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-255495. Es wurde eine problematische Schwachstelle in Bdtask Isshue Multi Store eCommerce Shopping Cart Solution 4.0 gefunden. Es betrifft eine unbekannte Funktion der Datei /dashboard/Cinvoice/manage_invoice der Komponente Manage Sale Page. Durch das Beeinflussen des Arguments Title mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen. Der Exploit steht zur öffentlichen Verfügung.
CVSS: LOW (2.4) EPSS Score: 0.05% SSVC Exploitation: poc
April 16th, 2025 (6 days ago)
|
|
Description: Cybersecurity researchers have detailed four different vulnerabilities in a core component of the Windows task scheduling service that could be exploited by local attackers to achieve privilege escalation and erase logs to cover up evidence of malicious activities.
The issues have been uncovered in a binary named "schtasks.exe," which enables an administrator to create, delete, query, change,
April 16th, 2025 (6 days ago)
|
|
Description: Greetings! Today we are posting here the new company, "Empresa Nacional de Electricidad". Company Description: The National Electricity Company (ENDE) is a corporation of the Plurinational State, whose main objective and strategic role is to pa...
April 16th, 2025 (6 days ago)
|
|
|
Description: Greetings! Today we are posting here the new company, "AEA-MG". Company Description: AEA-MG (Association of Electricians and Employees of CEMIG and its Subsidiaries) was founded on 29 January 1983 by a group of electricians who recognized the n...
April 16th, 2025 (6 days ago)
|
|
|
Description: Hyalogic, the leader in premium high molecular weight hyaluronic acid, offers joint care supplements for humans and animals, as well as a full line of skin care and personal care products made with premium hyaluronic acid (HA). Also known as hyaluronan or hyaluronate, HA supports healthy joints and has numerous skin, hair, nail, and eye moisturizing benefits. Our product line includes liquid oral supplements, lozenge supplements, and topical skin care products under the well known names: Synthovial Seven and Episilk, Hyalun for your horse and HyaFlex for your dog or cat.
April 16th, 2025 (6 days ago)
|
|
|
Description: Feldman & Lopez, P.A. is a boutique law firm located in the heart of South Florida. Feldman & Lopez, P.A. was established in 2015 by a young female team of insurance experts, eager to provide Floridians with high quality civil and insurance litigation services. This boutique firm offers state-wide professional services to all residents of Florida and their assignees, personalized to meet every one of their clients' needs. Feldman & Lopez has a wide range of expertise in handling all post loss claims for their clients who have the appropriate coverages under their homeowner insurance policy. In addition, the firm handles all aspects of water and/or mold remediation claims and the invoices that go along with them based off validly executed assignment of benefits. In an age where the insurance industry rules our pocket books, rest assured that Feldman & Lopez will protect your rights and benefits when your insurance company tries to wrongfully deny or underpay your property damage claims.
April 16th, 2025 (6 days ago)
|
|
CVE-2021-20035 |
Description: SonicWall SMA100 appliances contain an OS command injection vulnerability in the management interface that allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user, which could potentially lead to code execution.
CVSS: MEDIUM (6.5)
April 16th, 2025 (6 days ago)
|
|
Description: The watermarks, which could identify people leaking screenshots to the press, are in the background of internal communications platform P2.
April 16th, 2025 (6 days ago)
|