CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39071
https://notcve.org/view.php?id=CVE-2024-39071
09 Jul 2024 — Fujian Kelixun <=7.6.6.4391 is vulnerable to SQL Injection in send_event.php. Fujian Kelixun <=7.6.6.4391 es vulnerable a la inyección SQL en send_event.php. • https://gist.github.com/Y5neKO/561a038dab8584c1448aad3013b9c2c7 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-1305
https://notcve.org/view.php?id=CVE-2024-1305
08 Jul 2024 — tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming write operations which an attacker can use to overflow memory buffers, resulting in a bug check and potentially arbitrary code execution in kernel space La versión 9.26 y anteriores del controlador tap-windows6 no verifica correctamente los datos de tamaño de las operaciones de escritura entrantes que un atacante puede usar para desbordar los búfers de memoria, lo que resulta en una verificación de errores... • https://community.openvpn.net/openvpn/wiki/CVE-2024-1305 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2024-21778
https://notcve.org/view.php?id=CVE-2024-21778
08 Jul 2024 — A specially crafted .dat file can lead to arbitrary code execution. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-1911 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-49073
https://notcve.org/view.php?id=CVE-2023-49073
08 Jul 2024 — A specially crafted series of HTTP requests can lead to arbitrary code execution. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1875 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-48270
https://notcve.org/view.php?id=CVE-2023-48270
08 Jul 2024 — A specially crafted series of network requests can lead to arbitrary code execution. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1876 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 1CVE-2023-45742
https://notcve.org/view.php?id=CVE-2023-45742
08 Jul 2024 — A specially crafted series of HTTP requests can lead to arbitrary code execution. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1877 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-49595
https://notcve.org/view.php?id=CVE-2023-49595
08 Jul 2024 — A specially crafted series of network requests can lead to arbitrary code execution. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1878 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-45215
https://notcve.org/view.php?id=CVE-2023-45215
08 Jul 2024 — A specially crafted series of network requests can lead to arbitrary code execution. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1891 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-6365 – Product Table by WBW <= 2.0.1 - Unauthenticated Remote Code Execution
https://notcve.org/view.php?id=CVE-2024-6365
08 Jul 2024 — The Product Table by WBW plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.0.1 via the 'saveCustomTitle' function. This is due to missing authorization and lack of sanitization of appended data in the languages/customTitle.php file. This makes it possible for unauthenticated attackers to execute code on the server. El complemento Product Table by WBW para WordPress es vulnerable a la ejecución remota de código en todas las versiones hasta la 2.0.1 incluida a... • https://plugins.trac.wordpress.org/browser/woo-product-tables/trunk/languages/customTitle.php • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-38346 – Apache CloudStack: Unauthenticated cluster service port leads to remote execution
https://notcve.org/view.php?id=CVE-2024-38346
05 Jul 2024 — Some of these commands were found to have command injection vulnerabilities that can result in arbitrary code execution via agents on the hosts that may run as a privileged user. ... Some of these commands were found to have command injection vulnerabilities that can result in arbitrary code execution via agents on the hosts that may run as a privileged user. • http://www.openwall.com/lists/oss-security/2024/07/05/1 • CWE-94: Improper Control of Generation of Code ('Code Injection') •