Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-07 | CVE-2024-45297 | Unspecified vulnerability in Discourse Discourse is an open source platform for community discussion. | 4.3 |
| 2024-10-07 | CVE-2024-47772 | Cross-site Scripting vulnerability in Discourse Discourse is an open source platform for community discussion. | 6.1 |
| 2024-10-07 | CVE-2024-47556 | Path Traversal vulnerability in Xerox Freeflow Core Pre-Auth RCE via Path Traversal | 9.8 |
| 2024-10-07 | CVE-2024-47557 | Path Traversal vulnerability in Xerox Freeflow Core Pre-Auth RCE via Path Traversal | 9.8 |
| 2024-10-07 | CVE-2024-47558 | Path Traversal vulnerability in Xerox Freeflow Core 7.0 Authenticated RCE via Path Traversal | 8.8 |
| 2024-10-07 | CVE-2024-47559 | Path Traversal vulnerability in Xerox Freeflow Core 7.0 Authenticated RCE via Path Traversal | 8.8 |
| 2024-10-07 | CVE-2024-46300 | Cross-site Scripting vulnerability in Angeljudesuarez Placement Management System 1.0 itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php. | 6.1 |
| 2024-10-07 | CVE-2024-28709 | Cross-site Scripting vulnerability in Limesurvey Cross Site Scripting vulnerability in LimeSurvey before 6.5.12+240611 allows a remote attacker to execute arbitrary code via a crafted script to the title and comment fields. | 6.1 |
| 2024-10-07 | CVE-2024-28710 | Cross-site Scripting vulnerability in Limesurvey Cross Site Scripting vulnerability in LimeSurvey before 6.5.0+240319 allows a remote attacker to execute arbitrary code via a lack of input validation and output encoding in the Alert Widget's message component. | 6.1 |
| 2024-10-07 | CVE-2024-45932 | Cross-site Scripting vulnerability in Webkul Krayin CRM 1.3.0 Krayin CRM v1.3.0 is vulnerable to Cross Site Scripting (XSS) via the organization name field in /admin/contacts/organizations/edit/2. | 4.8 |