Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-13 | CVE-2024-52295 | Unspecified vulnerability in Dataease DataEase is an open source data visualization analysis tool. | 9.8 |
| 2024-11-13 | CVE-2024-52298 | Unspecified vulnerability in Xwiki PDF Viewer Macro macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. | 7.5 |
| 2024-11-13 | CVE-2024-52299 | Unspecified vulnerability in Xwiki PDF Viewer Macro macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. | 7.5 |
| 2024-11-13 | CVE-2024-52300 | Cross-site Scripting vulnerability in Xwiki PDF Viewer Macro macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. | 9.0 |
| 2024-11-13 | CVE-2024-52305 | Unspecified vulnerability in Webkul Unopim UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. | 4.8 |
| 2024-11-13 | CVE-2024-52306 | Unspecified vulnerability in Backpackforlaravel Filemanager FileManager provides a Backpack admin interface for files and folder. | 9.8 |
| 2024-11-13 | CVE-2024-7295 | Use of Hard-coded Credentials vulnerability in Progress Telerik Report Server In Progress® Telerik® Report Server versions prior to 2024 Q4 (10.3.24.1112), the encryption of local asset data used an older algorithm which may allow a sophisticated actor to decrypt this information. | 6.2 |
| 2024-11-13 | CVE-2024-8049 | Unspecified vulnerability in Progress Telerik Document Processing Libraries In Progress Telerik Document Processing Libraries, versions prior to 2024 Q4 (2024.4.1106), importing a document with unsupported features can lead to excessive processing, leading to excessive use of computing resources leaving the application process unavailable. | 6.5 |
| 2024-11-13 | CVE-2024-48510 | Path Traversal vulnerability in Dotnetzip.Semverd Project Dotnetzip.Semverd 1.11.0 Directory Traversal vulnerability in DotNetZip v.1.16.0 and before allows a remote attacker to execute arbitrary code via the src/Zip.Shared/ZipEntry.Extract.cs component NOTE: This vulnerability only affects products that are no longer supported by the maintainer. | 9.8 |
| 2024-11-13 | CVE-2024-49505 | Cross-site Scripting vulnerability in Opensuse Mirrorcache A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in openSUSE Tumbleweed MirrorCache allows the execution of arbitrary JS via reflected XSS in the REGEX and P parameters. This issue affects MirrorCache before 1.083. | 6.1 |