CVSS: 6.1EPSS: %CPEs: -EXPL: 1CVE-2024-34225
https://notcve.org/view.php?id=CVE-2024-34225
page=system_info in Computer Laboratory Management System using PHP and MySQL 1.0 allow remote attackers to inject arbitrary web script or HTML via the name, shortname parameters. • https://github.com/dovankha/CVE-2024-34225 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 6.5EPSS: %CPEs: -EXPL: 0CVE-2024-33454
https://notcve.org/view.php?id=CVE-2024-33454
Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to execute arbitrary code via a crafted script to the Bluetooth stack component. • https://gist.github.com/Zakary-D/30f565c4266c02c62aa9089c363e78e9 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 4.8EPSS: %CPEs: -EXPL: 0CVE-2024-33433
https://notcve.org/view.php?id=CVE-2024-33433
Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote attacker to execute arbitrary code via the Guest Access Control parameter in the Wireless Page. • https://github.com/4hsien/CVE-vulns/blob/main/TOTOLINK/X2000R/XSS_2_Guest_Access_Control/README.md • CWE-233: Improper Handling of Parameters •
CVSS: -EPSS: %CPEs: -EXPL: 0CVE-2024-33250
https://notcve.org/view.php?id=CVE-2024-33250
An issue in Open-Source Technology Committee SRS real-time video server RS/4.0.268(Leo) and SRS/4.0.195(Leo) allows a remote attacker to execute arbitrary code via a crafted request. • https://github.com/hacker2004/cccccckkkkkk/blob/main/CVE-2024-33250.md •
CVSS: 6.2EPSS: %CPEs: -EXPL: 0CVE-2024-31803
https://notcve.org/view.php?id=CVE-2024-31803
Buffer Overflow vulnerability in emp-ot v.0.2.4 allows a remote attacker to execute arbitrary code via the FerretCOT<T>::read_pre_data128_from_file function. • https://github.com/FudanMPL/Vulnerabilities-in-MPC-Framework/tree/main/emp-ot/stack-buffer-overflow-ferret_cot https://github.com/emp-toolkit/emp-ot/issues/89 • CWE-121: Stack-based Buffer Overflow •