CVSS: 6.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-39002
https://notcve.org/view.php?id=CVE-2024-39002
This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties. • https://gist.github.com/mestrtee/9a2b522d59c53f31f45c1edb96459693 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-39013
https://notcve.org/view.php?id=CVE-2024-39013
This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties. • https://gist.github.com/mestrtee/a2be744675af5ece3240c19fd04fc5e1 • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-39853
https://notcve.org/view.php?id=CVE-2024-39853
This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties. • https://gist.github.com/mestrtee/840f5d160aab4151bd0451cfb822e6b5 • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •
CVSS: 8.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-38998
https://notcve.org/view.php?id=CVE-2024-38998
This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties. • https://gist.github.com/mestrtee/9acae342285bd2998fa09ebcb1e6d30a • CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') •
CVSS: 9.9EPSS: 0%CPEs: -EXPL: 1CVE-2024-37762
https://notcve.org/view.php?id=CVE-2024-37762
MachForm up to version 21 is affected by an authenticated unrestricted file upload which leads to a remote code execution. • https://github.com/Atreb92/cve-2024-37762 • CWE-434: Unrestricted Upload of File with Dangerous Type •