CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-4192 – Stack-based Buffer Overflow vulnerability in Delta Electronics CNCSoft-G2 DOPSoft
https://notcve.org/view.php?id=CVE-2024-4192
An attacker can leverage this vulnerability to execute code in the context of the current process. ... This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft-G2. ... An attacker can leverage this vulnerability to execute code in the context of the current process. • https://www.cisa.gov/news-events/ics-advisories/icsa-24-121-01 • CWE-121: Stack-based Buffer Overflow •
CVSS: 6.1EPSS: 0%CPEs: -EXPL: 0CVE-2024-33371
https://notcve.org/view.php?id=CVE-2024-33371
Cross Site Scripting vulnerability in DedeCMS v.5.7.113 allows a remote attacker to execute arbitrary code via the typeid parameter in the makehtml_list_action.php component. • https://gitee.com/zchuanwen/cve/issues/I9HQRY • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2024-29466
https://notcve.org/view.php?id=CVE-2024-29466
Directory Traversal vulnerability in lsgwr spring boot online exam v.0.9 allows an attacker to execute arbitrary code via the FileTransUtil.java component. • https://gist.github.com/Xiqinger/b3cb51f390d408c3c66c66e645ba5ac0 • CWE-26: Path Traversal: '/dir/../filename' •
CVSS: 7.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-28269
https://notcve.org/view.php?id=CVE-2024-28269
This could result in a Remote Code Execution. • https://sensepost.com/blog/2024/from-discovery-to-disclosure-recrystallize-server-vulnerabilities https://www.recrystallize.com/merchant/ReCrystallize-Server-for-Crysta • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 7.1EPSS: 0%CPEs: -EXPL: 0CVE-2020-27478
https://notcve.org/view.php?id=CVE-2020-27478
Cross Site Scripting vulnerability found in Simplcommerce v.40734964b0811f3cbaf64b6dac261683d256f961 thru 3103357200c70b4767986544e01b19dbf11505a7 allows a remote attacker to execute arbitrary code via a crafted script to the search bar feature. • https://github.com/simplcommerce/SimplCommerce/issues/943 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •