Search
14,631 CVEs · Low severity
CVEs (14,631, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 351–375 of 14,631 (capped at 500)
| CVE ID | Severity | Patch | CVSS ↓ | Published | Description |
|---|---|---|---|---|---|
| CVE-2024-25351 | LOW | 3.8 | 2024-02-28 | SQL Injection vulnerability in /zms/admin/changeimage.php in PHPGurukul Zoo Management System 1.0 allows attackers to run arbitrary SQL commands via the editid parameter. | |
| CVE-2024-23603 | LOW | Patched | 3.8 | 2024-02-14 | An SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. Note: Software versions which have reached End of Technical Support … |
| CVE-2023-42776 | LOW | Patched | 3.8 | 2024-02-14 | Improper input validation in some Intel(R) SGX DCAP software for Windows before version 1.19.100.3 may allow an authenticateed user to potentially enable information disclo… |
| CVE-2023-27303 | LOW | Patched | 3.8 | 2024-02-14 | Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable information disclos… |
| CVE-2023-27307 | LOW | Patched | 3.8 | 2024-02-14 | Improper buffer restrictions in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable information di… |
| CVE-2023-26592 | LOW | Patched | 3.8 | 2024-02-14 | Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable a denial … |
| CVE-2023-27300 | LOW | Patched | 3.8 | 2024-02-14 | Improper buffer restrictions in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable information di… |
| CVE-2024-0628 | LOW | Patched | 3.8 | 2024-02-07 | The WP RSS Aggregator plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.23.5 via the RSS feed source in admin settin… |
| CVE-2023-45036 | LOW | 3.8 | 2024-02-02 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2023-45037 | LOW | 3.8 | 2024-02-02 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2023-45035 | LOW | 3.8 | 2024-02-02 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2023-41292 | LOW | 3.8 | 2024-02-02 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2024-20920 | LOW | 3.8 | 2024-01-16 | Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). The supported version that is affected is 11. Easily exploitable vulnerability allo… | |
| CVE-2023-45040 | LOW | 3.8 | 2024-01-05 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2023-45041 | LOW | 3.8 | 2024-01-05 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2023-45042 | LOW | 3.8 | 2024-01-05 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2023-45043 | LOW | 3.8 | 2024-01-05 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2023-45044 | LOW | 3.8 | 2024-01-05 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2023-45039 | LOW | 3.8 | 2024-01-05 | A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow a… | |
| CVE-2020-26623 | LOW | Patched | 3.8 | 2024-01-02 | SQL Injection vulnerability discovered in Gila CMS 1.15.4 and earlier allows a remote attacker to execute arbitrary web scripts via the Area parameter under the Administrat… |
| CVE-2020-26624 | LOW | Patched | 3.8 | 2024-01-02 | A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote attacker to execute arbitrary web scripts via the ID parameter after the l… |
| CVE-2020-26625 | LOW | Patched | 3.8 | 2024-01-02 | A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote attacker to execute arbitrary web scripts via the 'user_id' parameter afte… |
| CVE-2023-29062 | LOW | 3.8 | 2023-11-28 | The Operating System hosting the FACSChorus application is configured to allow transmission of hashed user credentials upon user action without adequately validating the id… | |
| CVE-2023-28404 | LOW | Patched | 3.8 | 2023-11-14 | Out-of-bounds read in the Intel(R) Arc(TM) & Iris(R) Xe Graphics - WHQL - Windows drivers before version 31.0.101.4255 may allow an authenticated user to potentially enable… |
| CVE-2023-5834 | LOW | Patched | 3.8 | 2023-10-27 | HashiCorp Vagrant's Windows installer targeted a custom location with a non-protected path that could be junctioned, introducing potential for unauthorized file system writ… |