Lista CVE 2024/5xxx

CVE nel gruppo: 5xxx

CVE-2024-5000 (N/A)

CVE-2024-5001 (CODESYS: Incorrect calculation of buffer size can cause DoS on CODESYS OPC UA products)

CVE-2024-5002 (Image Hover Effects for Elementor with Lightbox and Flipbox <= 3.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via _id, oxi_addons_f_title_tag, and content_description_tag Parameters)

CVE-2024-5003 (User Submitted Posts < 20240516 - Admin+ Stored XSS)

CVE-2024-5004 (WP Stacker <= 1.8.5 - Stored XSS via CSRF)

CVE-2024-5005 (CM Popup Plugin for WordPress < 1.6.6 - Contributor+ Stored XSS)

CVE-2024-5006 (Incorrect Provision of Specified Functionality in GitLab)

CVE-2024-5008 (Boostify Header Footer Builder for Elementor <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via size Parameter)

CVE-2024-5009 (WhatsUp Gold APM Unrestricted File Upload Remote Code Execution Vulnerability)

CVE-2024-5010 (WhatsUp Gold SetAdminPassword Improper Access Control Privilege Escalation Vulnerability)

CVE-2024-5011 (WhatsUp Gold TestController multiple information disclosure vulnerabilities)

CVE-2024-5012 (WhatsUp Gold TestController Chart denial of service vulnerability)

CVE-2024-5013 (WhatsUp Gold Missing Authentication GetWindowsCredential Information Disclosure Vulnerability)

CVE-2024-5014 (WhatsUp Gold InstallController Denial-of-Service Vulnerability)

CVE-2024-5015 (WhatsUp Gold GetASPReport Server-Side Request Forgery Information Disclosure)

CVE-2024-5016 (WhatsUp Gold SessionControler Server-Side Request Forgery Information Disclosure Vulnerability)

CVE-2024-5017 (WhatsUp Gold OnMessage Deserialization of Untrusted Data Remote Code Execution Vulnerability)

CVE-2024-5018 (WhatsUp Gold AppProfileImport path traversal vulnerability)

CVE-2024-5019 (WhatsUp Gold LoadUsingBasePath Directory Traversal Information Disclosure Vulnerability)

CVE-2024-5020 (WhatsUp Gold LoadCSSUsingBasePath Directory Traversal Information Disclosure Vulnerability)