Lista CVE 2024/2xxx

CVE nel gruppo: 2xxx

CVE-2024-2020 (N/A)

CVE-2024-2021 (N/A)

CVE-2024-2022 (Netentsec NS-ASG Application Security Gateway list_localuser.php sql injection)

CVE-2024-2023 (Netentsec NS-ASG Application Security Gateway list_ipAddressPolicy.php sql injection)

CVE-2024-2024 (Folders <= 3.0 and Folders Pro <= 3.0.2 - Directory Traversal via handle_folders_file_upload)

CVE-2024-2025 (Folders Pro <= 3.0.2 - Authenticated(Author+) Arbitrary File Upload via handle_folders_file_upload)

CVE-2024-2026 (N/A)

CVE-2024-2027 (N/A)

CVE-2024-2028 (N/A)

CVE-2024-2029 (N/A)

CVE-2024-2030 (Command Injection in mudler/localai)

CVE-2024-2031 (N/A)

CVE-2024-2032 (N/A)

CVE-2024-2033 (Race Condition Vulnerability in zenml-io/zenml)

CVE-2024-2035 (N/A)

CVE-2024-2036 (Improper Authorization in zenml-io/zenml)

CVE-2024-2037 (ApplyOnline – Application Form Builder and Manager <= 2.6 - Missing Authorization to Sensitive Information Exposure)

CVE-2024-2038 (N/A)

CVE-2024-2039 (Visual Website Collaboration, Feedback & Project Management – Atarim <= 3.22.6 - Hardcoded Credentials)

CVE-2024-2040 (N/A)

CVE-2024-2041 ( Himer – Social Questions and Answers < 2.1.1 - Arbitrary Group Joining via CSRF)

CVE-2024-2042 (N/A)

CVE-2024-2043 (N/A)

CVE-2024-2044 (N/A)

CVE-2024-2045 (Unsafe Deserialisation and Remote Code Execution by an Authenticated user in pgAdmin 4)

CVE-2024-2047 (Session 1.17.5 – LFR via chat attachment)

CVE-2024-2048 (N/A)

CVE-2024-2049 (Vault Cert Auth Method Did Not Correctly Validate Non-CA Certificates)

CVE-2024-2050 (Server-Side Request Forgery (SSRF))

CVE-2024-2051 (N/A)

CVE-2024-2052 (N/A)

CVE-2024-2053 (N/A)

CVE-2024-2054 (Artica Proxy Unauthenticated LFI Protection Bypass Vulnerability)

CVE-2024-2055 (Artica Proxy Unauthenticated PHP Deserialization Vulnerability)

CVE-2024-2056 (Artica Proxy Unauthenticated File Manager Vulnerability)

CVE-2024-2057 (Artica Proxy Loopback Services Remotely Accessible Unauthenticated)

CVE-2024-2058 (LangChain langchain_community TFIDFRetriever tfidf.py load_local server-side request forgery)

CVE-2024-2059 (SourceCodester Petrol Pump Management Software product.php unrestricted upload)

CVE-2024-2060 (SourceCodester Petrol Pump Management Software service_crud.php unrestricted upload)

CVE-2024-2061 (SourceCodester Petrol Pump Management Software login_crud.php sql injection)