CVE-2023-29116 – PHP Information Disclosure in Enel X JuiceBox
https://notcve.org/view.php?id=CVE-2023-29116
Under certain conditions, through a request directed to the Waybox Enel X web management application, information like Waybox OS version or service configuration details could be obtained. • https://support-emobility.enelx.com/content/dam/enelxmobility/italia/documenti/manuali-schede-tecniche/Waybox-3-Security-Bulletin-06-2024-V1.pdf • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2024-10084 – Contact Form 7 – Dynamic Text Extension <= 4.5 - Information Disclosure via Shortcode
https://notcve.org/view.php?id=CVE-2024-10084
The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic Information Disclosure in all versions up to, and including, 4.5 via the CF7_get_post_var shortcode. • https://plugins.trac.wordpress.org/browser/contact-form-7-dynamic-text-extension/tags/4.5.0/includes/shortcodes.php#L225 https://www.wordfence.com/threat-intel/vulnerabilities/id/e051a83e-ad5a-4789-bfee-e03aa9d6a3fc?source=cve • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2024-47137 – Liteos_a has an out-of-bounds Write vulnerability
https://notcve.org/view.php?id=CVE-2024-47137
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through out-of-bounds write. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-11.md • CWE-787: Out-of-bounds Write •
CVE-2024-47404 – Liteos_a has a double free vulnerability
https://notcve.org/view.php?id=CVE-2024-47404
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through double free. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-11.md • CWE-415: Double Free •
CVE-2024-47797 – Liteos_a has an out-of-bounds Write vulnerability
https://notcve.org/view.php?id=CVE-2024-47797
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through out-of-bounds write. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-11.md • CWE-787: Out-of-bounds Write •