Vulnerabilities > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-02 | CVE-2020-26625 | SQL Injection vulnerability in Gilacms Gila CMS A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote attacker to execute arbitrary web scripts via the 'user_id' parameter after the login portal. | 3.8 |
2024-01-02 | CVE-2023-49142 | Use After Free vulnerability in Openharmony in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia audio crash through modify a released pointer. | 3.3 |
2023-12-31 | CVE-2023-52275 | Missing Authorization vulnerability in Tecno-Mobile Camon X Firmware Gallery3d on Tecno Camon X CA7 devices allows attackers to view hidden images by navigating to data/com.android.gallery3d/.privatealbum/.encryptfiles and guessing the correct image file extension. | 2.1 |
2023-12-22 | CVE-2023-51386 | Improper Privilege Management vulnerability in Amazon Awslabs Sandbox Accounts for Events Sandbox Accounts for Events provides multiple, temporary AWS accounts to a number of authenticated users simultaneously via a browser-based GUI. | 3.3 |
2023-12-22 | CVE-2023-51651 | Path Traversal vulnerability in Amazon AWS Software Development KIT AWS SDK for PHP is the Amazon Web Services software development kit for PHP. | 3.3 |
2023-12-21 | CVE-2023-6690 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Github Enterprise Server A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on transferred repositories by making a GraphQL mutation to alter repository permissions during the transfer. This vulnerability affected GitHub Enterprise Server version 3.8.0 and above and was fixed in version 3.8.12, 3.9.7, 3.10.4, and 3.11.1. | 2.0 |
2023-12-19 | CVE-2022-45809 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Quicoto Thumbs Rating 5.0.0 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Ricard Torres Thumbs Rating.This issue affects Thumbs Rating: from n/a through 5.0.0. | 3.7 |
2023-12-18 | CVE-2023-5384 | Cleartext Storage of Sensitive Information vulnerability in multiple products A flaw was found in Infinispan. | 2.7 |
2023-12-15 | CVE-2023-3511 | Unspecified vulnerability in Gitlab An issue has been discovered in GitLab EE affecting all versions starting from 8.17 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. | 3.5 |
2023-12-15 | CVE-2023-48608 | Improper Input Validation vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by an Improper Input Validation vulnerability. | 3.5 |