Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-20 | CVE-2024-37347 | Cross-site Scripting vulnerability in Absolute Secure Access There is a cross-site scripting vulnerability in the pool configuration component of the management UI of Absolute Secure Access prior to 13.06. | 3.4 |
| 2024-06-20 | CVE-2024-37348 | Cross-site Scripting vulnerability in Absolute Secure Access There is a cross-site scripting vulnerability in the management UI of Absolute Secure Access prior to version 13.06. | 3.4 |
| 2024-06-18 | CVE-2024-6129 | Information Exposure Through Discrepancy vulnerability in Spa-Cart Spa-Cartcms 1.9.0.6 A vulnerability, which was classified as problematic, was found in spa-cartcms 1.9.0.6. | 3.7 |
| 2024-06-15 | CVE-2024-31870 | Information Exposure Through Discrepancy vulnerability in IBM I IBM Db2 for i 7.2, 7.3, 7.4, and 7.5 supplies user defined table function is vulnerable to user enumeration by a local authenticated attacker, without having authority to the related *USRPRF objects. | 3.3 |
| 2024-06-14 | CVE-2024-37887 | Unspecified vulnerability in Nextcloud Server Nextcloud Server is a self hosted personal cloud system. | 3.5 |
| 2024-06-14 | CVE-2024-37314 | Missing Authorization vulnerability in Nextcloud Server Nextcloud Photos is a photo management app. | 3.5 |
| 2024-06-14 | CVE-2024-36287 | Unspecified vulnerability in Mattermost Desktop Mattermost Desktop App versions <=5.7.0 fail to disable certain Electron debug flags which allows for bypassing TCC restrictions on macOS. | 3.3 |
| 2024-06-14 | CVE-2024-5464 | Unspecified vulnerability in Huawei Emui and Harmonyos Vulnerability of insufficient permission verification in the NearLink module Impact: Successful exploitation of this vulnerability may affect service confidentiality. | 3.3 |
| 2024-06-13 | CVE-2024-22333 | Exposure of Resource to Wrong Sphere vulnerability in IBM Maximo Application Suite and Maximo Asset Management IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web pages to be stored locally which can be read by another user on the system. | 3.3 |
| 2024-06-13 | CVE-2024-3073 | Unspecified vulnerability in Wp-Ecommerce Easy WP Smtp The Easy WP SMTP by SendLayer – WordPress SMTP and Email Log Plugin plugin for WordPress is vulnerable to information exposure in all versions up to, and including, 2.3.0. | 2.7 |