Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2024-11-11 CVE-2024-11065 OS Command Injection vulnerability in Dlink Dsl6740C Firmware
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet.
network
low complexity
dlink CWE-78
7.2
7.2
2024-11-11 CVE-2024-11061 Stack-based Buffer Overflow vulnerability in Tenda Ac10 Firmware 16.03.10.13
A vulnerability classified as critical was found in Tenda AC10 16.03.10.13.
network
low complexity
tenda CWE-121
8.8
8.8
2024-11-10 CVE-2024-11058 Injection vulnerability in Surajkumarvishwakarma Real Estate Management System
A vulnerability was found in CodeAstro Real Estate Management System up to 1.0.
network
low complexity
surajkumarvishwakarma CWE-74
7.2
7.2
2024-11-10 CVE-2024-46952 Classic Buffer Overflow vulnerability in multiple products
An issue was discovered in pdf/pdf_xref.c in Artifex Ghostscript before 10.04.0.
local
low complexity
artifex debian CWE-120
7.8
7.8
2024-11-10 CVE-2024-46953 Integer Overflow or Wraparound vulnerability in multiple products
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0.
local
low complexity
artifex debian suse CWE-190
7.8
7.8
2024-11-10 CVE-2024-46954 Path Traversal vulnerability in Artifex Ghostscript
An issue was discovered in decode_utf8 in base/gp_utf8.c in Artifex Ghostscript before 10.04.0.
local
low complexity
artifex CWE-22
7.8
7.8
2024-11-10 CVE-2024-46956 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0.
local
low complexity
artifex debian suse CWE-125
7.8
7.8
2024-11-10 CVE-2024-46951 Access of Uninitialized Pointer vulnerability in multiple products
An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0.
local
low complexity
artifex debian suse CWE-824
7.8
7.8
2024-11-10 CVE-2024-11056 Stack-based Buffer Overflow vulnerability in Tenda Ac10 Firmware 16.03.10.13
A vulnerability, which was classified as critical, was found in Tenda AC10 16.03.10.13.
network
low complexity
tenda CWE-121
8.8
8.8
2024-11-10 CVE-2024-10958 Code Injection vulnerability in Wppa WP Photo Album Plus
The The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution via getshortcodedrenderedfenodelay AJAX action in all versions up to, and including, 8.8.08.007 .
network
low complexity
wppa CWE-94
7.3
7.3