diff --git a/2012/CVE-2012-2982.md b/2012/CVE-2012-2982.md index 9b190bb1ed..2903975bfe 100644 --- a/2012/CVE-2012-2982.md +++ b/2012/CVE-2012-2982.md @@ -34,6 +34,7 @@ file/show.cgi in Webmin 1.590 and earlier allows remote authenticated users to e - https://github.com/alien-keric/webmin-v1.580-exploit - https://github.com/blu3ming/CVE-2012-2982 - https://github.com/cd6629/CVE-2012-2982-Python-PoC +- https://github.com/elliotosama/CVE-2012-2982 - https://github.com/kirilla/python - https://github.com/tera-si/PoC-scripts-in-GO - https://github.com/wizardy0ga/CVE_2012-2982 diff --git a/2016/CVE-2016-1000153.md b/2016/CVE-2016-1000153.md index 9a0459ad78..65a8d4e658 100644 --- a/2016/CVE-2016-1000153.md +++ b/2016/CVE-2016-1000153.md @@ -13,6 +13,7 @@ Reflected XSS in wordpress plugin tidio-gallery v1.1 No PoCs from references. #### Github +- https://github.com/20142995/nuclei-templates - https://github.com/ARPSyndicate/cvemon - https://github.com/ARPSyndicate/kenzer-templates diff --git a/2017/CVE-2017-17562.md b/2017/CVE-2017-17562.md index dc984097dc..a1170f3348 100644 --- a/2017/CVE-2017-17562.md +++ b/2017/CVE-2017-17562.md @@ -17,6 +17,7 @@ Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled an #### Github - https://github.com/1337g/CVE-2017-17562 - https://github.com/20142995/Goby +- https://github.com/20142995/nuclei-templates - https://github.com/20142995/sectool - https://github.com/ARPSyndicate/cvemon - https://github.com/ARPSyndicate/kenzer-templates diff --git a/2019/CVE-2019-11358.md b/2019/CVE-2019-11358.md index 4b96734bfb..fabb1494a9 100644 --- a/2019/CVE-2019-11358.md +++ b/2019/CVE-2019-11358.md @@ -558,6 +558,7 @@ jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishan - https://github.com/ClaudiaDavis/DragonSlayers2022-2023Code - https://github.com/Clayton-Toste/ScotboticsFreightFrenzy - https://github.com/CloudCodesStuff/ftc-2022-2023 +- https://github.com/Clueless120/4780FTC_MAIN - https://github.com/CoderOnen/FTCode - https://github.com/ColeDrucker/FTC-Code-Cole - https://github.com/ColemanDuPlessie/FTC-SDG-Center-Stage @@ -1366,6 +1367,7 @@ jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishan - https://github.com/KChugh2903/ftc-2021 - https://github.com/KEMS-KASS-FTC/CenterStage - https://github.com/KEMS-KASS-FTC/Powerplay +- https://github.com/KKAY99/FTC-Technobotics - https://github.com/KSSONE/centerstage - https://github.com/KTT24/CreamedPeasCode - https://github.com/KUDOS-15229/Centerstage2023 @@ -1800,6 +1802,7 @@ jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishan - https://github.com/Perfect-Paradox-Team-8400/8400_2023 - https://github.com/Petelax/16413-FreightFrenzy - https://github.com/Petelax/FTC16413-CenterStage +- https://github.com/Petelax/FTC16413-IntoTheDeep - https://github.com/Petelax/FTC16413-PowerPlay - https://github.com/Peter-Dong1/KHS-Robotics-2223-FTC- - https://github.com/PeterWetherell/OffSeasonTemplate diff --git a/2019/CVE-2019-15823.md b/2019/CVE-2019-15823.md index d7db501a80..c61978c2d5 100644 --- a/2019/CVE-2019-15823.md +++ b/2019/CVE-2019-15823.md @@ -13,5 +13,5 @@ The wps-hide-login plugin before 1.5.3 for WordPress has an action=confirmaction - https://wpvulndb.com/vulnerabilities/9469 #### Github -No PoCs found on GitHub currently. +- https://github.com/whattheslime/wps-show-login diff --git a/2019/CVE-2019-15824.md b/2019/CVE-2019-15824.md index e9f0db5f9e..4005976936 100644 --- a/2019/CVE-2019-15824.md +++ b/2019/CVE-2019-15824.md @@ -14,4 +14,5 @@ The wps-hide-login plugin before 1.5.3 for WordPress has an adminhash protection #### Github - https://github.com/ARPSyndicate/cvemon +- https://github.com/whattheslime/wps-show-login diff --git a/2019/CVE-2019-15825.md b/2019/CVE-2019-15825.md index 3cb5c40647..c6c21e6910 100644 --- a/2019/CVE-2019-15825.md +++ b/2019/CVE-2019-15825.md @@ -13,5 +13,5 @@ The wps-hide-login plugin before 1.5.3 for WordPress has an action=rp&key&login - https://wpvulndb.com/vulnerabilities/9469 #### Github -No PoCs found on GitHub currently. +- https://github.com/whattheslime/wps-show-login diff --git a/2019/CVE-2019-15826.md b/2019/CVE-2019-15826.md index b3c63cbe72..85ced0f55a 100644 --- a/2019/CVE-2019-15826.md +++ b/2019/CVE-2019-15826.md @@ -13,5 +13,5 @@ The wps-hide-login plugin before 1.5.3 for WordPress has a protection bypass via - https://wpvulndb.com/vulnerabilities/9469 #### Github -No PoCs found on GitHub currently. +- https://github.com/whattheslime/wps-show-login diff --git a/2019/CVE-2019-19006.md b/2019/CVE-2019-19006.md index 178a3aef23..ece158586f 100644 --- a/2019/CVE-2019-19006.md +++ b/2019/CVE-2019-19006.md @@ -11,6 +11,7 @@ Sangoma FreePBX 115.0.16.26 and below, 14.0.13.11 and below, 13.0.197.13 and bel #### Reference - https://community.freepbx.org/t/freepbx-security-vulnerability-sec-2019-001/62772 +- https://wiki.freepbx.org/display/FOP/2019-11-20+Remote+Admin+Authentication+Bypass #### Github No PoCs found on GitHub currently. diff --git a/2019/CVE-2019-19538.md b/2019/CVE-2019-19538.md index a5f74423c8..d2e9f59c5e 100644 --- a/2019/CVE-2019-19538.md +++ b/2019/CVE-2019-19538.md @@ -11,6 +11,7 @@ In Sangoma FreePBX 13 through 15 and sysadmin (aka System Admin) 13.0.92 through #### Reference - https://community.freepbx.org/t/freepbx-security-vulnerability-sec-2019-00 +- https://wiki.freepbx.org/display/FOP/2019-12-03+Remote+Command+Execution #### Github No PoCs found on GitHub currently. diff --git a/2019/CVE-2019-19852.md b/2019/CVE-2019-19852.md index b739b4b9d4..fc5bd0af40 100644 --- a/2019/CVE-2019-19852.md +++ b/2019/CVE-2019-19852.md @@ -10,6 +10,7 @@ An XSS Injection vulnerability exists in Sangoma FreePBX and PBXact 13, 14, and ### POC #### Reference +- https://wiki.freepbx.org/display/FOP/2020-01-09+XSS+Injection+vulnerability+in+Call+Event+Logging+module - https://wiki.freepbx.org/display/FOP/List+of+Securities+Vulnerabilities #### Github diff --git a/2019/CVE-2019-20463.md b/2019/CVE-2019-20463.md new file mode 100644 index 0000000000..a26f0bd445 --- /dev/null +++ b/2019/CVE-2019-20463.md @@ -0,0 +1,17 @@ +### [CVE-2019-20463](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20463) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A crash and reboot can be triggered by crafted IP traffic, as demonstrated by the Nikto vulnerability scanner. For example, sending the 111111 string to UDP port 20188 causes a reboot. To deny service for a long time period, the crafted IP traffic may be sent periodically. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-20464.md b/2019/CVE-2019-20464.md new file mode 100644 index 0000000000..5e83bebae2 --- /dev/null +++ b/2019/CVE-2019-20464.md @@ -0,0 +1,17 @@ +### [CVE-2019-20464](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20464) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. By default, a mobile application is used to stream over UDP. However, the device offers many more services that also enable streaming. Although the service used by the mobile application requires a password, the other streaming services do not. By initiating communication on the RTSP port, an attacker can obtain access to the video feed without authenticating. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-20465.md b/2019/CVE-2019-20465.md new file mode 100644 index 0000000000..adaa362446 --- /dev/null +++ b/2019/CVE-2019-20465.md @@ -0,0 +1,17 @@ +### [CVE-2019-20465](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20465) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. It is possible (using TELNET without a password) to control the camera's pan/zoom/tilt functionality. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-20466.md b/2019/CVE-2019-20466.md new file mode 100644 index 0000000000..2922e819b6 --- /dev/null +++ b/2019/CVE-2019-20466.md @@ -0,0 +1,17 @@ +### [CVE-2019-20466](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20466) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A local attacker with the "default" account is capable of reading the /etc/passwd file, which contains a weakly hashed root password. By taking this hash and cracking it, the attacker can obtain root rights on the device. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-20467.md b/2019/CVE-2019-20467.md new file mode 100644 index 0000000000..332b44db21 --- /dev/null +++ b/2019/CVE-2019-20467.md @@ -0,0 +1,17 @@ +### [CVE-2019-20467](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20467) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. The device by default has a TELNET interface available (which is not advertised or functionally used, but is nevertheless available). Two backdoor accounts (root and default) exist that can be used on this interface. The usernames and passwords of the backdoor accounts are the same on all devices. Attackers can use these backdoor accounts to obtain access and execute code as root within the device. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-20468.md b/2019/CVE-2019-20468.md new file mode 100644 index 0000000000..9392fa3f13 --- /dev/null +++ b/2019/CVE-2019-20468.md @@ -0,0 +1,17 @@ +### [CVE-2019-20468](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20468) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered in SeTracker2 for TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. It has unnecessary permissions such as READ_EXTERNAL_STORAGE, WRITE_EXTERNAL_STORAGE, and READ_CONTACTS. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-20470.md b/2019/CVE-2019-20470.md new file mode 100644 index 0000000000..71dc241ad9 --- /dev/null +++ b/2019/CVE-2019-20470.md @@ -0,0 +1,17 @@ +### [CVE-2019-20470](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20470) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. It performs actions based on certain SMS commands. This can be used to set up a voice communication channel from the watch to any telephone number, initiated by sending a specific SMS and using the default password, e.g., pw,,call, triggers an outbound call from the watch. The password is sometimes available because of CVE-2019-20471. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-20471.md b/2019/CVE-2019-20471.md new file mode 100644 index 0000000000..bada9057b9 --- /dev/null +++ b/2019/CVE-2019-20471.md @@ -0,0 +1,17 @@ +### [CVE-2019-20471](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20471) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. When using the device at initial setup, a default password is used (123456) for administrative purposes. There is no prompt to change this password. Note that this password can be used in combination with CVE-2019-20470. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-20473.md b/2019/CVE-2019-20473.md new file mode 100644 index 0000000000..6cdc04c396 --- /dev/null +++ b/2019/CVE-2019-20473.md @@ -0,0 +1,17 @@ +### [CVE-2019-20473](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20473) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. Any SIM card used with the device cannot have a PIN configured. If a PIN is configured, the device simply produces a "Remove PIN and restart!" message, and cannot be used. This makes it easier for an attacker to use the SIM card by stealing the device. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2019/CVE-2019-3874.md b/2019/CVE-2019-3874.md index 54513d6cbb..cf6b3806f0 100644 --- a/2019/CVE-2019-3874.md +++ b/2019/CVE-2019-3874.md @@ -10,6 +10,7 @@ The SCTP socket buffer used by a userspace application is not accounted by the c ### POC #### Reference +- https://usn.ubuntu.com/3982-1/ - https://www.oracle.com/security-alerts/cpuApr2021.html #### Github diff --git a/2019/CVE-2019-3882.md b/2019/CVE-2019-3882.md index 3c64a24aff..92da701b58 100644 --- a/2019/CVE-2019-3882.md +++ b/2019/CVE-2019-3882.md @@ -10,7 +10,7 @@ A flaw was found in the Linux kernel's vfio interface implementation that permit ### POC #### Reference -No PoCs from references. +- https://usn.ubuntu.com/3982-1/ #### Github - https://github.com/ARPSyndicate/cvemon diff --git a/2020/CVE-2020-11915.md b/2020/CVE-2020-11915.md index 97a6ba8ba6..4033b686ba 100644 --- a/2020/CVE-2020-11915.md +++ b/2020/CVE-2020-11915.md @@ -10,6 +10,7 @@ An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. By sen ### POC #### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 - https://www.pentestpartners.com/security-blog/vulnerable-wi-fi-dildo-camera-endoscope-yes-really/ #### Github diff --git a/2020/CVE-2020-11920.md b/2020/CVE-2020-11920.md index 31cf790d62..457af18735 100644 --- a/2020/CVE-2020-11920.md +++ b/2020/CVE-2020-11920.md @@ -10,6 +10,7 @@ An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. A comm ### POC #### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 - https://www.pentestpartners.com/security-blog/vulnerable-wi-fi-dildo-camera-endoscope-yes-really/ #### Github diff --git a/2020/CVE-2020-11922.md b/2020/CVE-2020-11922.md index e8787f7b68..b46bce533b 100644 --- a/2020/CVE-2020-11922.md +++ b/2020/CVE-2020-11922.md @@ -10,7 +10,7 @@ An issue was discovered in WiZ Colors A60 1.14.0. The device sends unnecessary i ### POC #### Reference -No PoCs from references. +- http://seclists.org/fulldisclosure/2024/Jul/14 #### Github - https://github.com/Live-Hack-CVE/CVE-2020-11922 diff --git a/2020/CVE-2020-11923.md b/2020/CVE-2020-11923.md new file mode 100644 index 0000000000..f6d57bd1c1 --- /dev/null +++ b/2020/CVE-2020-11923.md @@ -0,0 +1,17 @@ +### [CVE-2020-11923](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11923) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered in WiZ Colors A60 1.14.0. API credentials are locally logged. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2020/CVE-2020-11924.md b/2020/CVE-2020-11924.md new file mode 100644 index 0000000000..1d9af494e3 --- /dev/null +++ b/2020/CVE-2020-11924.md @@ -0,0 +1,17 @@ +### [CVE-2020-11924](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11924) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered in WiZ Colors A60 1.14.0. Wi-Fi credentials are stored in cleartext in flash memory, which presents an information-disclosure risk for a discarded or resold device. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2020/CVE-2020-11925.md b/2020/CVE-2020-11925.md new file mode 100644 index 0000000000..56dd1550ee --- /dev/null +++ b/2020/CVE-2020-11925.md @@ -0,0 +1,17 @@ +### [CVE-2020-11925](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11925) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the device is based on a username and password. The root credentials are the same across all devices of this model. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/14 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2020/CVE-2020-2225.md b/2020/CVE-2020-2225.md new file mode 100644 index 0000000000..9f87580841 --- /dev/null +++ b/2020/CVE-2020-2225.md @@ -0,0 +1,17 @@ +### [CVE-2020-2225](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2225) +![](https://img.shields.io/static/v1?label=Product&message=Jenkins%20Matrix%20Project%20Plugin&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%3D%201.16%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +Jenkins Matrix Project Plugin 1.16 and earlier does not escape the axis names shown in tooltips on the overview page of builds with multiple axes, resulting in a stored cross-site scripting vulnerability. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/timothee-chauvin/eyeballvul + diff --git a/2021/CVE-2021-24917.md b/2021/CVE-2021-24917.md index 31e687081d..97284681c2 100644 --- a/2021/CVE-2021-24917.md +++ b/2021/CVE-2021-24917.md @@ -18,4 +18,5 @@ The WPS Hide Login WordPress plugin before 1.9.1 has a bug which allows to get t - https://github.com/Whiteh4tWolf/pentest - https://github.com/dikalasenjadatang/CVE-2021-24917 - https://github.com/soxoj/information-disclosure-writeups-and-pocs +- https://github.com/whattheslime/wps-show-login diff --git a/2021/CVE-2021-3493.md b/2021/CVE-2021-3493.md index c1a7bf949c..f836c90225 100644 --- a/2021/CVE-2021-3493.md +++ b/2021/CVE-2021-3493.md @@ -29,6 +29,7 @@ The overlayfs implementation in the linux kernel did not properly validate with - https://github.com/Anekant-Singhai/Exploits - https://github.com/ArrestX/--POC - https://github.com/Awrrays/Pentest-Tips +- https://github.com/BEPb/tryhackme - https://github.com/CVEDB/PoC-List - https://github.com/CVEDB/awesome-cve-repo - https://github.com/CVEDB/top diff --git a/2021/CVE-2021-3560.md b/2021/CVE-2021-3560.md index 5f0c6e007d..be0535ea07 100644 --- a/2021/CVE-2021-3560.md +++ b/2021/CVE-2021-3560.md @@ -24,6 +24,7 @@ It was found that polkit could be tricked into bypassing the credential checks f - https://github.com/AnastasiaLomova/PR1 - https://github.com/AnastasiaLomova/PR1.1 - https://github.com/AssassinUKG/Polkit-CVE-2021-3560 +- https://github.com/BEPb/tryhackme - https://github.com/BigMike-Champ/Capstone - https://github.com/BizarreLove/CVE-2021-3560 - https://github.com/CharonDefalt/linux-exploit diff --git a/2021/CVE-2021-36260.md b/2021/CVE-2021-36260.md index aa41db528c..dbd04cde3f 100644 --- a/2021/CVE-2021-36260.md +++ b/2021/CVE-2021-36260.md @@ -31,8 +31,10 @@ A command injection vulnerability in the web server of some Hikvision product. D - https://github.com/ArrestX/--POC - https://github.com/Awrrays/FrameVul - https://github.com/CVEDB/awesome-cve-repo +- https://github.com/CVEDB/top - https://github.com/Cuerz/CVE-2021-36260 - https://github.com/Fans0n-Fan/Awesome-IoT-exp +- https://github.com/GhostTroops/TOP - https://github.com/Haoke98/NetEye - https://github.com/HimmelAward/Goby_POC - https://github.com/KayCHENvip/vulnerability-poc diff --git a/2021/CVE-2021-4034.md b/2021/CVE-2021-4034.md index 28bcf46843..7dc4a025ea 100644 --- a/2021/CVE-2021-4034.md +++ b/2021/CVE-2021-4034.md @@ -50,6 +50,7 @@ A local privilege escalation vulnerability was found on polkit's pkexec utility. - https://github.com/AvakyanAlexander/Number7.1 - https://github.com/Awrrays/Pentest-Tips - https://github.com/Ayrx/CVE-2021-4034 +- https://github.com/BEPb/tryhackme - https://github.com/BachoSeven/stellestelline - https://github.com/BastG57/Random - https://github.com/BryptoBlood/Cyber-Security-University diff --git a/2021/CVE-2021-41773.md b/2021/CVE-2021-41773.md index 86d3c2a8cb..6971550a64 100644 --- a/2021/CVE-2021-41773.md +++ b/2021/CVE-2021-41773.md @@ -43,6 +43,7 @@ A flaw was found in a change made to path normalization in Apache HTTP Server 2. - https://github.com/ArrestX/--POC - https://github.com/AssassinUKG/CVE-2021-41773 - https://github.com/Awrrays/FrameVul +- https://github.com/BEPb/tryhackme - https://github.com/BabyTeam1024/CVE-2021-41773 - https://github.com/Balgogan/CVE-2021-41773 - https://github.com/BlueTeamSteve/CVE-2021-41773 diff --git a/2022/CVE-2022-0847.md b/2022/CVE-2022-0847.md index b719f14c3d..5641736daa 100644 --- a/2022/CVE-2022-0847.md +++ b/2022/CVE-2022-0847.md @@ -44,6 +44,7 @@ A flaw was found in the way the "flags" member of the new pipe buffer structure - https://github.com/Asbatel/CBDS_CVE-2022-0847_POC - https://github.com/Awrrays/Pentest-Tips - https://github.com/AyoubNajim/cve-2022-0847dirtypipe-exploit +- https://github.com/BEPb/tryhackme - https://github.com/BlessedRebuS/OSCP-Pentesting-Cheatsheet - https://github.com/BlizzardEternity/CVE-2022-0847 - https://github.com/BlizzardEternity/DirtyPipe-Android diff --git a/2022/CVE-2022-22965.md b/2022/CVE-2022-22965.md index 927506de45..6ad3a048c3 100644 --- a/2022/CVE-2022-22965.md +++ b/2022/CVE-2022-22965.md @@ -36,6 +36,7 @@ A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable t - https://github.com/Axx8/SpringFramework_CVE-2022-22965_RCE - https://github.com/BBD-YZZ/GUI-TOOLS - https://github.com/BC-SECURITY/Moriarty +- https://github.com/BEPb/tryhackme - https://github.com/BKLockly/CVE-2022-22965 - https://github.com/Bl0omZ/JAVAExploitStudy - https://github.com/BobTheShoplifter/Spring4Shell-POC diff --git a/2022/CVE-2022-27666.md b/2022/CVE-2022-27666.md index 686017e590..f5a30d9a71 100644 --- a/2022/CVE-2022-27666.md +++ b/2022/CVE-2022-27666.md @@ -13,6 +13,7 @@ A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ip - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.16.15 #### Github +- https://github.com/0xMarcio/cve - https://github.com/20142995/sectool - https://github.com/ARPSyndicate/cvemon - https://github.com/Albocoder/cve-2022-27666-exploits diff --git a/2022/CVE-2022-3349.md b/2022/CVE-2022-3349.md index e1af3980d0..54382d2926 100644 --- a/2022/CVE-2022-3349.md +++ b/2022/CVE-2022-3349.md @@ -11,7 +11,7 @@ A vulnerability was found in Sony PS4 and PS5. It has been classified as critica ### POC #### Reference -No PoCs from references. +- https://vuldb.com/?id.209679 #### Github - https://github.com/Tonaram/DSS-BufferOverflow diff --git a/2022/CVE-2022-3732.md b/2022/CVE-2022-3732.md new file mode 100644 index 0000000000..068f3bc3c0 --- /dev/null +++ b/2022/CVE-2022-3732.md @@ -0,0 +1,17 @@ +### [CVE-2022-3732](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3732) +![](https://img.shields.io/static/v1?label=Product&message=Ehoney&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-707%20Improper%20Neutralization%20-%3E%20CWE-74%20Injection%20-%3E%20CWE-89%20SQL%20Injection&color=brighgreen) + +### Description + +A vulnerability was found in seccome Ehoney and classified as critical. Affected by this issue is some unknown functionality of the file /api/v1/bait/set. The manipulation of the argument Payload leads to sql injection. The attack may be launched remotely. VDB-212414 is the identifier assigned to this vulnerability. + +### POC + +#### Reference +- https://vuldb.com/?id.212414 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2023/CVE-2023-1389.md b/2023/CVE-2023-1389.md index 2d0d6a80b1..3d623c6a7a 100644 --- a/2023/CVE-2023-1389.md +++ b/2023/CVE-2023-1389.md @@ -20,6 +20,7 @@ TP-Link Archer AX21 (AX1800) firmware versions before 1.1.4 Build 20230219 conta - https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors - https://github.com/Terminal1337/CVE-2023-1389 - https://github.com/Voyag3r-Security/CVE-2023-1389 +- https://github.com/ahisec/nuclei-tps - https://github.com/fkie-cad/nvd-json-data-feeds - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/timb-machine/linux-malware diff --git a/2023/CVE-2023-22527.md b/2023/CVE-2023-22527.md index 3dbd4bc1a0..1284d58b4e 100644 --- a/2023/CVE-2023-22527.md +++ b/2023/CVE-2023-22527.md @@ -57,6 +57,7 @@ A template injection vulnerability on older versions of Confluence Data Center a - https://github.com/ga0we1/CVE-2023-22527_Confluence_RCE - https://github.com/gobysec/Goby - https://github.com/jarrodcoulter/jankyjred-cyphercon +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/lions2012/Penetration_Testing_POC - https://github.com/netlas-io/netlas-dorks - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2023/CVE-2023-23108.md b/2023/CVE-2023-23108.md new file mode 100644 index 0000000000..91c148ea77 --- /dev/null +++ b/2023/CVE-2023-23108.md @@ -0,0 +1,17 @@ +### [CVE-2023-23108](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23108) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +In crasm 1.8-3, invalid input validation, specific files passed to the command line application, can lead to a NULL pointer dereference in the function Xasc. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/DiRaltvein/memory-corruption-examples + diff --git a/2023/CVE-2023-2523.md b/2023/CVE-2023-2523.md index 045a4c7987..9479fae165 100644 --- a/2023/CVE-2023-2523.md +++ b/2023/CVE-2023-2523.md @@ -16,6 +16,7 @@ A vulnerability was found in Weaver E-Office 9.5. It has been rated as critical. - https://github.com/Any3ite/CVE-2023-2523 - https://github.com/Co5mos/nuclei-tps - https://github.com/TrojanAZhen/Self_Back +- https://github.com/ahisec/nuclei-tps - https://github.com/bingtangbanli/cve-2023-2523-and-cve-2023-2648 - https://github.com/d4n-sec/d4n-sec.github.io - https://github.com/kuang-zy/2023-Weaver-pocs diff --git a/2023/CVE-2023-2617.md b/2023/CVE-2023-2617.md index 8b5f1fbaed..9b112c72e1 100644 --- a/2023/CVE-2023-2617.md +++ b/2023/CVE-2023-2617.md @@ -13,5 +13,5 @@ A vulnerability classified as problematic was found in OpenCV wechat_qrcode Modu - https://github.com/opencv/opencv_contrib/pull/3480 #### Github -No PoCs found on GitHub currently. +- https://github.com/DiRaltvein/memory-corruption-examples diff --git a/2023/CVE-2023-2648.md b/2023/CVE-2023-2648.md index 66d5b88aa4..9129c4dc5d 100644 --- a/2023/CVE-2023-2648.md +++ b/2023/CVE-2023-2648.md @@ -17,6 +17,7 @@ A vulnerability was found in Weaver E-Office 9.5. It has been classified as crit - https://github.com/MD-SEC/MDPOCS - https://github.com/MzzdToT/HAC_Bored_Writing - https://github.com/TrojanAZhen/Self_Back +- https://github.com/ahisec/nuclei-tps - https://github.com/bingtangbanli/cve-2023-2523-and-cve-2023-2648 - https://github.com/d4n-sec/d4n-sec.github.io - https://github.com/kuang-zy/2023-Weaver-pocs diff --git a/2023/CVE-2023-26917.md b/2023/CVE-2023-26917.md new file mode 100644 index 0000000000..929b16bd75 --- /dev/null +++ b/2023/CVE-2023-26917.md @@ -0,0 +1,17 @@ +### [CVE-2023-26917](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26917) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +libyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lysp_stmt_validate_value at lys_parse_mem.c. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/DiRaltvein/memory-corruption-examples + diff --git a/2023/CVE-2023-27952.md b/2023/CVE-2023-27952.md new file mode 100644 index 0000000000..a884d0b384 --- /dev/null +++ b/2023/CVE-2023-27952.md @@ -0,0 +1,17 @@ +### [CVE-2023-27952](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27952) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20bypass%20Gatekeeper%20checks&color=brighgreen) + +### Description + +A race condition was addressed with improved locking. This issue is fixed in macOS Ventura 13.3. An app may bypass Gatekeeper checks. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2023/CVE-2023-29374.md b/2023/CVE-2023-29374.md index 64c98aeeec..568d8cbd3e 100644 --- a/2023/CVE-2023-29374.md +++ b/2023/CVE-2023-29374.md @@ -15,5 +15,6 @@ In LangChain through 0.0.131, the LLMMathChain chain allows prompt injection att #### Github - https://github.com/cckuailong/awesome-gpt-security - https://github.com/corca-ai/awesome-llm-security +- https://github.com/invariantlabs-ai/invariant - https://github.com/zgimszhd61/llm-security-quickstart diff --git a/2023/CVE-2023-29995.md b/2023/CVE-2023-29995.md new file mode 100644 index 0000000000..f37a075026 --- /dev/null +++ b/2023/CVE-2023-29995.md @@ -0,0 +1,17 @@ +### [CVE-2023-29995](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29995) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +In NanoMQ v0.15.0-0, a Heap overflow occurs in copyn_utf8_str function of mqtt_parser.c + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/DiRaltvein/memory-corruption-examples + diff --git a/2023/CVE-2023-29996.md b/2023/CVE-2023-29996.md new file mode 100644 index 0000000000..7564cc0338 --- /dev/null +++ b/2023/CVE-2023-29996.md @@ -0,0 +1,17 @@ +### [CVE-2023-29996](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29996) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +In NanoMQ v0.15.0-0, segment fault with Null Pointer Dereference occurs in the process of decoding subinfo_decode and unsubinfo_decode. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/DiRaltvein/memory-corruption-examples + diff --git a/2023/CVE-2023-32307.md b/2023/CVE-2023-32307.md index 7b6c8ff580..0074bef69e 100644 --- a/2023/CVE-2023-32307.md +++ b/2023/CVE-2023-32307.md @@ -14,5 +14,6 @@ Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3 - https://github.com/freeswitch/sofia-sip/security/advisories/GHSA-rm4c-ccvf-ff9c #### Github +- https://github.com/DiRaltvein/memory-corruption-examples - https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2023/CVE-2023-32546.md b/2023/CVE-2023-32546.md index b263b89990..f9fc6bec61 100644 --- a/2023/CVE-2023-32546.md +++ b/2023/CVE-2023-32546.md @@ -14,4 +14,5 @@ No PoCs from references. #### Github - https://github.com/kohnakagawa/kohnakagawa +- https://github.com/ripeda/Lectricus diff --git a/2023/CVE-2023-32786.md b/2023/CVE-2023-32786.md new file mode 100644 index 0000000000..e263f2e6e5 --- /dev/null +++ b/2023/CVE-2023-32786.md @@ -0,0 +1,17 @@ +### [CVE-2023-32786](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32786) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +In Langchain through 0.0.155, prompt injection allows an attacker to force the service to retrieve data from an arbitrary URL, essentially providing SSRF and potentially injecting content into downstream tasks. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/invariantlabs-ai/invariant + diff --git a/2023/CVE-2023-33659.md b/2023/CVE-2023-33659.md index 090eed2fec..e8c32241f8 100644 --- a/2023/CVE-2023-33659.md +++ b/2023/CVE-2023-33659.md @@ -13,5 +13,5 @@ A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. The vulnerability - https://github.com/emqx/nanomq/issues/1154 #### Github -No PoCs found on GitHub currently. +- https://github.com/DiRaltvein/memory-corruption-examples diff --git a/2023/CVE-2023-33660.md b/2023/CVE-2023-33660.md index 2137f5cc7c..85b4b36606 100644 --- a/2023/CVE-2023-33660.md +++ b/2023/CVE-2023-33660.md @@ -13,5 +13,5 @@ A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. The vulnerability - https://github.com/emqx/nanomq/issues/1155 #### Github -No PoCs found on GitHub currently. +- https://github.com/DiRaltvein/memory-corruption-examples diff --git a/2023/CVE-2023-36189.md b/2023/CVE-2023-36189.md new file mode 100644 index 0000000000..4734186382 --- /dev/null +++ b/2023/CVE-2023-36189.md @@ -0,0 +1,17 @@ +### [CVE-2023-36189](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36189) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +SQL injection vulnerability in langchain before v0.0.247 allows a remote attacker to obtain sensitive information via the SQLDatabaseChain component. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/invariantlabs-ai/invariant + diff --git a/2023/CVE-2023-37144.md b/2023/CVE-2023-37144.md index 7eed65061f..546bfafd2f 100644 --- a/2023/CVE-2023-37144.md +++ b/2023/CVE-2023-37144.md @@ -13,5 +13,5 @@ Tenda AC10 v15.03.06.26 was discovered to contain a command injection vulnerabil - https://github.com/DaDong-G/Vulnerability_info/blob/main/ac10_command_injection/Readme.md #### Github -No PoCs found on GitHub currently. +- https://github.com/pwn2ooown/2024-NCKUCTF-Pwn-Course diff --git a/2023/CVE-2023-38709.md b/2023/CVE-2023-38709.md index 737fbe811f..3ca0d3b33d 100644 --- a/2023/CVE-2023-38709.md +++ b/2023/CVE-2023-38709.md @@ -10,7 +10,7 @@ Faulty input validation in the core of Apache allows malicious or exploitable ba ### POC #### Reference -No PoCs from references. +- http://seclists.org/fulldisclosure/2024/Jul/18 #### Github - https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2023/CVE-2023-4166.md b/2023/CVE-2023-4166.md index 75862c7b72..f2109b2fb1 100644 --- a/2023/CVE-2023-4166.md +++ b/2023/CVE-2023-4166.md @@ -18,6 +18,7 @@ No PoCs from references. - https://github.com/TrojanAZhen/Self_Back - https://github.com/Ultramanzhang/obsfir - https://github.com/ZUEB-CybersecurityGroup/obsfir +- https://github.com/ahisec/nuclei-tps - https://github.com/d4n-sec/d4n-sec.github.io - https://github.com/ggjkjk/1444 - https://github.com/ibaiw/2023Hvv diff --git a/2023/CVE-2023-49442.md b/2023/CVE-2023-49442.md index ed626227ff..925684e6cc 100644 --- a/2023/CVE-2023-49442.md +++ b/2023/CVE-2023-49442.md @@ -15,6 +15,7 @@ No PoCs from references. #### Github - https://github.com/Co5mos/nuclei-tps - https://github.com/Threekiii/Awesome-POC +- https://github.com/ahisec/nuclei-tps - https://github.com/fkie-cad/nvd-json-data-feeds - https://github.com/tanjiti/sec_profile diff --git a/2023/CVE-2023-49785.md b/2023/CVE-2023-49785.md index 1e2d170c85..5875f126bc 100644 --- a/2023/CVE-2023-49785.md +++ b/2023/CVE-2023-49785.md @@ -15,6 +15,7 @@ No PoCs from references. #### Github - https://github.com/XRSec/AWVS-Update +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nvn1729/advisories - https://github.com/seyrenus/trace-release - https://github.com/tanjiti/sec_profile diff --git a/2023/CVE-2023-50292.md b/2023/CVE-2023-50292.md index 5785cc10d1..5e4dbe202b 100644 --- a/2023/CVE-2023-50292.md +++ b/2023/CVE-2023-50292.md @@ -14,4 +14,5 @@ No PoCs from references. #### Github - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/k3ppf0r/2024-PocLib diff --git a/2023/CVE-2023-50386.md b/2023/CVE-2023-50386.md index 623181b241..cdaf2c27e0 100644 --- a/2023/CVE-2023-50386.md +++ b/2023/CVE-2023-50386.md @@ -15,6 +15,7 @@ No PoCs from references. #### Github - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/tanjiti/sec_profile - https://github.com/vvmdx/Apache-Solr-RCE_CVE-2023-50386_POC diff --git a/2023/CVE-2023-52356.md b/2023/CVE-2023-52356.md index d51a79a2da..f750f6cf8c 100644 --- a/2023/CVE-2023-52356.md +++ b/2023/CVE-2023-52356.md @@ -13,6 +13,10 @@ A segment fault (SEGV) flaw was found in libtiff that could be triggered by pass ### POC #### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 - https://gitlab.com/libtiff/libtiff/-/issues/622 #### Github diff --git a/2023/CVE-2023-5345.md b/2023/CVE-2023-5345.md index 8d9e8e30eb..afb54649c8 100644 --- a/2023/CVE-2023-5345.md +++ b/2023/CVE-2023-5345.md @@ -13,6 +13,7 @@ A use-after-free vulnerability in the Linux kernel's fs/smb/client component can - http://packetstormsecurity.com/files/177029/Kernel-Live-Patch-Security-Notice-LSN-0100-1.html #### Github +- https://github.com/Lotuhu/Page-UAF - https://github.com/fkie-cad/nvd-json-data-feeds - https://github.com/shakyaraj9569/Documentation diff --git a/2023/CVE-2023-6277.md b/2023/CVE-2023-6277.md index 9845664228..aaddb59b14 100644 --- a/2023/CVE-2023-6277.md +++ b/2023/CVE-2023-6277.md @@ -13,6 +13,7 @@ An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFO ### POC #### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 - https://gitlab.com/libtiff/libtiff/-/issues/614 #### Github diff --git a/2023/CVE-2023-7028.md b/2023/CVE-2023-7028.md index 5884a012f1..98d5a51ea8 100644 --- a/2023/CVE-2023-7028.md +++ b/2023/CVE-2023-7028.md @@ -43,6 +43,7 @@ No PoCs from references. - https://github.com/izj007/wechat - https://github.com/johe123qwe/github-trending - https://github.com/josephalan42/CTFs-Infosec-Witeups +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/lions2012/Penetration_Testing_POC - https://github.com/mochammadrafi/CVE-2023-7028 - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2023/CVE-2023-7201.md b/2023/CVE-2023-7201.md index e7b9fda8d1..cf6d94f8c4 100644 --- a/2023/CVE-2023-7201.md +++ b/2023/CVE-2023-7201.md @@ -13,5 +13,5 @@ The Everest Backup WordPress plugin before 2.2.5 does not properly validate bac - https://wpscan.com/vulnerability/64ba4461-bbba-45eb-981f-bb5f2e5e56e1/ #### Github -No PoCs found on GitHub currently. +- https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2024/CVE-2024-0757.md b/2024/CVE-2024-0757.md index 837798e3df..32d6dd45fb 100644 --- a/2024/CVE-2024-0757.md +++ b/2024/CVE-2024-0757.md @@ -13,5 +13,6 @@ The Insert or Embed Articulate Content into WordPress plugin through 4.300000002 - https://wpscan.com/vulnerability/eccd017c-e442-46b6-b5e6-aec7bbd5f836/ #### Github +- https://github.com/hunThubSpace/CVE-2024-0757-Exploit - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-0868.md b/2024/CVE-2024-0868.md index 1834066350..1b6a839114 100644 --- a/2024/CVE-2024-0868.md +++ b/2024/CVE-2024-0868.md @@ -13,5 +13,5 @@ The coreActivity: Activity Logging plugin for WordPress plugin before 2.1 retrie - https://wpscan.com/vulnerability/bb7c2d2b-cdfe-433b-96cf-714e71d12b22/ #### Github -No PoCs found on GitHub currently. +- https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2024/CVE-2024-1561.md b/2024/CVE-2024-1561.md index 2fde231eda..4117fe65c9 100644 --- a/2024/CVE-2024-1561.md +++ b/2024/CVE-2024-1561.md @@ -16,6 +16,7 @@ No PoCs from references. - https://github.com/DiabloHTB/CVE-2024-1561 - https://github.com/DiabloHTB/Nuclei-Template-CVE-2024-1561 - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/tanjiti/sec_profile - https://github.com/wjlin0/poc-doc diff --git a/2024/CVE-2024-1709.md b/2024/CVE-2024-1709.md index e3fe110b0d..99df23fbe5 100644 --- a/2024/CVE-2024-1709.md +++ b/2024/CVE-2024-1709.md @@ -29,6 +29,7 @@ ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Byp - https://github.com/cjybao/CVE-2024-1709-and-CVE-2024-1708 - https://github.com/codeb0ss/CVE-2024-1709-PoC - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/myseq/vcheck-cli - https://github.com/nitish778191/fitness_app - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-2004.md b/2024/CVE-2024-2004.md new file mode 100644 index 0000000000..0181e8d79f --- /dev/null +++ b/2024/CVE-2024-2004.md @@ -0,0 +1,18 @@ +### [CVE-2024-2004](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2004) +![](https://img.shields.io/static/v1?label=Product&message=curl&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=8.6.0%3C%3D%208.6.0%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-115%20Misinterpretation%20of%20Input%20&color=brighgreen) + +### Description + +When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remain in the allowed set due to an error in the logic for removing protocols. The below command would perform a request to curl.se with a plaintext protocol which has been explicitly disabled. curl --proto -all,-http http://curl.se The flaw is only present if the set of selected protocols disables the entire set of available protocols, in itself a command with no practical use and therefore unlikely to be encountered in real situations. The curl security team has thus assessed this to be low severity bug. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-20931.md b/2024/CVE-2024-20931.md index 13320cedf9..21bd1a1485 100644 --- a/2024/CVE-2024-20931.md +++ b/2024/CVE-2024-20931.md @@ -25,6 +25,7 @@ No PoCs from references. - https://github.com/gobysec/Goby - https://github.com/jafshare/GithubTrending - https://github.com/johe123qwe/github-trending +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/labesterOct/CVE-2024-20931 - https://github.com/netlas-io/netlas-dorks - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-21338.md b/2024/CVE-2024-21338.md index da7498aee2..5c44e66f78 100644 --- a/2024/CVE-2024-21338.md +++ b/2024/CVE-2024-21338.md @@ -44,5 +44,6 @@ Windows Kernel Elevation of Privilege Vulnerability - https://github.com/johe123qwe/github-trending - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/tanjiti/sec_profile +- https://github.com/tykawaii98/CVE-2024-21338_PoC - https://github.com/varwara/CVE-2024-21338 diff --git a/2024/CVE-2024-21413.md b/2024/CVE-2024-21413.md index caedcfc2d3..47a730b60e 100644 --- a/2024/CVE-2024-21413.md +++ b/2024/CVE-2024-21413.md @@ -19,6 +19,7 @@ Microsoft Outlook Remote Code Execution Vulnerability #### Github - https://github.com/0xMarcio/cve +- https://github.com/BEPb/tryhackme - https://github.com/CMNatic/CVE-2024-21413 - https://github.com/DevAkabari/CVE-2024-21413 - https://github.com/GhostTroops/TOP diff --git a/2024/CVE-2024-21514.md b/2024/CVE-2024-21514.md index 418e53b14d..6628579a88 100644 --- a/2024/CVE-2024-21514.md +++ b/2024/CVE-2024-21514.md @@ -13,5 +13,6 @@ This affects versions of the package opencart/opencart from 0.0.0. An SQL Inject - https://security.snyk.io/vuln/SNYK-PHP-OPENCARTOPENCART-7266565 #### Github +- https://github.com/bigb0x/CVE-2024-21514 - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-21762.md b/2024/CVE-2024-21762.md index e92f0dfee9..b911cc588b 100644 --- a/2024/CVE-2024-21762.md +++ b/2024/CVE-2024-21762.md @@ -40,6 +40,7 @@ No PoCs from references. - https://github.com/fkie-cad/nvd-json-data-feeds - https://github.com/greandfather/CVE-2024-20291-POC - https://github.com/h4x0r-dz/CVE-2024-21762 +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/lolminerxmrig/multicheck_CVE-2024-21762 - https://github.com/lore-is-already-taken/multicheck_CVE-2024-21762 - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-21893.md b/2024/CVE-2024-21893.md index 2f76196e58..de3b6a3ac4 100644 --- a/2024/CVE-2024-21893.md +++ b/2024/CVE-2024-21893.md @@ -24,6 +24,7 @@ No PoCs from references. - https://github.com/gobysec/Goby - https://github.com/h4x0r-dz/CVE-2024-21893.py - https://github.com/inguardians/ivanti-VPN-issues-2024-research +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/seajaysec/Ivanti-Connect-Around-Scan - https://github.com/tanjiti/sec_profile diff --git a/2024/CVE-2024-23334.md b/2024/CVE-2024-23334.md index 0985ea7b82..c135718db4 100644 --- a/2024/CVE-2024-23334.md +++ b/2024/CVE-2024-23334.md @@ -19,6 +19,7 @@ aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. - https://github.com/ggPonchik/Tinkoff-CTF-2024-lohness - https://github.com/ibaiw/2024Hvv - https://github.com/jhonnybonny/CVE-2024-23334 +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/marl-ot/DevSecOps-2024 - https://github.com/netlas-io/netlas-dorks - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-23692.md b/2024/CVE-2024-23692.md index aaa416221c..0f08666e1a 100644 --- a/2024/CVE-2024-23692.md +++ b/2024/CVE-2024-23692.md @@ -14,12 +14,16 @@ - https://mohemiv.com/all/rejetto-http-file-server-2-3m-unauthenticated-rce/ #### Github +- https://github.com/0x20c/CVE-2024-23692-EXP - https://github.com/Ostorlab/KEV - https://github.com/Threekiii/CVE - https://github.com/TrojanAZhen/Self_Back - https://github.com/enomothem/PenTestNote +- https://github.com/jakabakos/CVE-2024-23692-RCE-in-Rejetto-HFS - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/onewinner/POCS - https://github.com/tanjiti/sec_profile +- https://github.com/vanboomqi/CVE-2024-23692 - https://github.com/wjlin0/poc-doc - https://github.com/wy876/POC diff --git a/2024/CVE-2024-2379.md b/2024/CVE-2024-2379.md new file mode 100644 index 0000000000..0d7f5a482f --- /dev/null +++ b/2024/CVE-2024-2379.md @@ -0,0 +1,18 @@ +### [CVE-2024-2379](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2379) +![](https://img.shields.io/static/v1?label=Product&message=curl&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=8.6.0%3C%3D%208.6.0%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-295%20Improper%20Certificate%20Validation%20&color=brighgreen) + +### Description + +libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to use an unknown/bad cipher or curve, the error path accidentally skips the verification and returns OK, thus ignoring any certificate problems. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-23897.md b/2024/CVE-2024-23897.md index a41efd0987..02d964d2e8 100644 --- a/2024/CVE-2024-23897.md +++ b/2024/CVE-2024-23897.md @@ -62,6 +62,7 @@ Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of - https://github.com/jenkinsci-cert/SECURITY-3314-3315 - https://github.com/johe123qwe/github-trending - https://github.com/jopraveen/CVE-2024-23897 +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/kaanatmacaa/CVE-2024-23897 - https://github.com/lions2012/Penetration_Testing_POC - https://github.com/mil4ne/CVE-2024-23897-Jenkins-4.441 diff --git a/2024/CVE-2024-23917.md b/2024/CVE-2024-23917.md index 8597cfa04d..133be3eb6b 100644 --- a/2024/CVE-2024-23917.md +++ b/2024/CVE-2024-23917.md @@ -16,4 +16,5 @@ No PoCs from references. - https://github.com/Ostorlab/KEV - https://github.com/Y4tacker/JavaSec - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/k3ppf0r/2024-PocLib diff --git a/2024/CVE-2024-2398.md b/2024/CVE-2024-2398.md new file mode 100644 index 0000000000..6759f359a3 --- /dev/null +++ b/2024/CVE-2024-2398.md @@ -0,0 +1,18 @@ +### [CVE-2024-2398](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2398) +![](https://img.shields.io/static/v1?label=Product&message=curl&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=8.6.0%3C%3D%208.6.0%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-772%20Missing%20Release%20of%20Resource%20after%20Effective%20Lifetime%20&color=brighgreen) + +### Description + +When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. Further, this error condition fails silently and is therefore not easily detected by an application. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-24590.md b/2024/CVE-2024-24590.md index 2588ad8b90..8f9017c141 100644 --- a/2024/CVE-2024-24590.md +++ b/2024/CVE-2024-24590.md @@ -13,6 +13,8 @@ Deserialization of untrusted data can occur in versions 0.17.0 to 1.14.2 of the No PoCs from references. #### Github +- https://github.com/OxyDeV2/ClearML-CVE-2024-24590 +- https://github.com/diegogarciayala/CVE-2024-24590-ClearML-RCE-CMD-POC - https://github.com/fkie-cad/nvd-json-data-feeds - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-2466.md b/2024/CVE-2024-2466.md new file mode 100644 index 0000000000..a1b795faa5 --- /dev/null +++ b/2024/CVE-2024-2466.md @@ -0,0 +1,18 @@ +### [CVE-2024-2466](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2466) +![](https://img.shields.io/static/v1?label=Product&message=curl&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=8.6.0%3C%3D%208.6.0%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-297%20Improper%20Validation%20of%20Certificate%20with%20Host%20Mismatch%20&color=brighgreen) + +### Description + +libcurl did not check the server certificate of TLS connections done to a host specified as an IP address, when built to use mbedTLS. libcurl would wrongly avoid using the set hostname function when the specified hostname was given as an IP address, therefore completely skipping the certificate check. This affects all uses of TLS protocols (HTTPS, FTPS, IMAPS, POPS3, SMTPS, etc). + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-2473.md b/2024/CVE-2024-2473.md new file mode 100644 index 0000000000..c5e2f89dc6 --- /dev/null +++ b/2024/CVE-2024-2473.md @@ -0,0 +1,17 @@ +### [CVE-2024-2473](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2473) +![](https://img.shields.io/static/v1?label=Product&message=WPS%20Hide%20Login&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%201.9.15.2%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-863%20Incorrect%20Authorization&color=brighgreen) + +### Description + +The WPS Hide Login plugin for WordPress is vulnerable to Login Page Disclosure in all versions up to, and including, 1.9.15.2. This is due to a bypass that is created when the 'action=postpass' parameter is supplied. This makes it possible for attackers to easily discover any login page that may have been hidden by the plugin. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/whattheslime/wps-show-login + diff --git a/2024/CVE-2024-24795.md b/2024/CVE-2024-24795.md index 79742677d7..078f91dcc3 100644 --- a/2024/CVE-2024-24795.md +++ b/2024/CVE-2024-24795.md @@ -10,7 +10,7 @@ HTTP Response splitting in multiple modules in Apache HTTP Server allows an atta ### POC #### Reference -No PoCs from references. +- http://seclists.org/fulldisclosure/2024/Jul/18 #### Github - https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2024/CVE-2024-25600.md b/2024/CVE-2024-25600.md index e238158144..91198c03b6 100644 --- a/2024/CVE-2024-25600.md +++ b/2024/CVE-2024-25600.md @@ -36,6 +36,7 @@ Improper Control of Generation of Code ('Code Injection') vulnerability in Codee - https://github.com/ivanbg2004/0BL1V10N-CVE-2024-25600-Bricks-Builder-plugin-for-WordPress - https://github.com/johe123qwe/github-trending - https://github.com/k3lpi3b4nsh33/CVE-2024-25600 +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/peiqiF4ck/WebFrameworkTools-5.1-main - https://github.com/sampsonv/github-trending diff --git a/2024/CVE-2024-26229.md b/2024/CVE-2024-26229.md index 6ded7911a6..e1c40b40b4 100644 --- a/2024/CVE-2024-26229.md +++ b/2024/CVE-2024-26229.md @@ -58,5 +58,6 @@ No PoCs from references. - https://github.com/michredteam/PoC-26229 - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/tanjiti/sec_profile +- https://github.com/team-MineDEV/CVE-2024-26229 - https://github.com/varwara/CVE-2024-26229 diff --git a/2024/CVE-2024-26230.md b/2024/CVE-2024-26230.md new file mode 100644 index 0000000000..13f60f2f1d --- /dev/null +++ b/2024/CVE-2024-26230.md @@ -0,0 +1,55 @@ +### [CVE-2024-26230](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26230) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201507&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201607&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%201809&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%2021H2&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2010%20Version%2022H2&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2011%20Version%2023H2&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2011%20version%2021H2&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2011%20version%2022H2&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%2011%20version%2022H3&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20%20Service%20Pack%202&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20R2%20Service%20Pack%201%20(Server%20Core%20installation)&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20R2%20Service%20Pack%201&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20Service%20Pack%202%20(Server%20Core%20installation)&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20Service%20Pack%202&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20(Server%20Core%20installation)&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20R2%20(Server%20Core%20installation)&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012%20R2&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202012&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202016%20(Server%20Core%20installation)&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202016&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202019%20(Server%20Core%20installation)&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202019&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202022%2C%2023H2%20Edition%20(Server%20Core%20installation)&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202022&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.10240.20596%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.14393.6897%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.17763.5696%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.19044.4291%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.19045.4291%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.20348.2402%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.22000.2899%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.22621.3447%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.22631.3447%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=10.0.0%3C%2010.0.25398.830%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=6.0.0%3C%206.0.6003.22618%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=6.0.0%3C%206.1.7601.27067%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=6.1.0%3C%206.1.7601.27067%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=6.2.0%3C%206.2.9200.24821%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=6.3.0%3C%206.3.9600.21924%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-416%3A%20Use%20After%20Free&color=brighgreen) + +### Description + +Windows Telephony Server Elevation of Privilege Vulnerability + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/kiwids0220/CVE-2024-26230 +- https://github.com/nomi-sec/PoC-in-GitHub + diff --git a/2024/CVE-2024-27198.md b/2024/CVE-2024-27198.md index 7ec6713ed6..1fcd492a04 100644 --- a/2024/CVE-2024-27198.md +++ b/2024/CVE-2024-27198.md @@ -36,6 +36,7 @@ No PoCs from references. - https://github.com/jafshare/GithubTrending - https://github.com/johe123qwe/github-trending - https://github.com/juev/links +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/labesterOct/CVE-2024-27198 - https://github.com/marl-ot/DevSecOps-2024 - https://github.com/netlas-io/netlas-dorks diff --git a/2024/CVE-2024-27316.md b/2024/CVE-2024-27316.md index e386c4ba94..5533bf0bcc 100644 --- a/2024/CVE-2024-27316.md +++ b/2024/CVE-2024-27316.md @@ -10,7 +10,7 @@ HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 ### POC #### Reference -No PoCs from references. +- http://seclists.org/fulldisclosure/2024/Jul/18 #### Github - https://github.com/Ampferl/poc_http2-continuation-flood diff --git a/2024/CVE-2024-27348.md b/2024/CVE-2024-27348.md index 143d45a7e9..d4bcb35cb6 100644 --- a/2024/CVE-2024-27348.md +++ b/2024/CVE-2024-27348.md @@ -16,6 +16,7 @@ No PoCs from references. - https://github.com/Ostorlab/KEV - https://github.com/Zeyad-Azima/CVE-2024-27348 - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/jakabakos/CVE-2024-27348-Apache-HugeGraph-RCE - https://github.com/kljunowsky/CVE-2024-27348 - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/wjlin0/poc-doc diff --git a/2024/CVE-2024-27521.md b/2024/CVE-2024-27521.md index 3116cb370b..033bc5c6b7 100644 --- a/2024/CVE-2024-27521.md +++ b/2024/CVE-2024-27521.md @@ -13,5 +13,5 @@ TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain an unauthentic - https://github.com/SpikeReply/advisories/blob/main/cve/totolink/cve-2024-27521.md #### Github -No PoCs found on GitHub currently. +- https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2024/CVE-2024-27815.md b/2024/CVE-2024-27815.md index 41c3cf0028..0d6849f1e3 100644 --- a/2024/CVE-2024-27815.md +++ b/2024/CVE-2024-27815.md @@ -20,6 +20,7 @@ An out-of-bounds write issue was addressed with improved input validation. This No PoCs from references. #### Github +- https://github.com/jprx/CVE-2024-27815 - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/sreedevk/bookmarks diff --git a/2024/CVE-2024-27826.md b/2024/CVE-2024-27826.md new file mode 100644 index 0000000000..411045980d --- /dev/null +++ b/2024/CVE-2024-27826.md @@ -0,0 +1,24 @@ +### [CVE-2024-27826](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27826) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.5%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.5%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20execute%20arbitrary%20code%20with%20kernel%20privileges&color=brighgreen) + +### Description + +The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6.8, macOS Sonoma 14.5, macOS Monterey 12.7.6, watchOS 10.5, visionOS 1.3, tvOS 17.5, iOS 17.5 and iPadOS 17.5. An app may be able to execute arbitrary code with kernel privileges. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27862.md b/2024/CVE-2024-27862.md new file mode 100644 index 0000000000..1c42d5bb68 --- /dev/null +++ b/2024/CVE-2024-27862.md @@ -0,0 +1,17 @@ +### [CVE-2024-27862](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27862) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Enabling%20Lockdown%20Mode%20while%20setting%20up%20a%20Mac%20may%20cause%20FileVault%20to%20become%20unexpectedly%20disabled&color=brighgreen) + +### Description + +A logic issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.6. Enabling Lockdown Mode while setting up a Mac may cause FileVault to become unexpectedly disabled. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27863.md b/2024/CVE-2024-27863.md new file mode 100644 index 0000000000..945b53857d --- /dev/null +++ b/2024/CVE-2024-27863.md @@ -0,0 +1,24 @@ +### [CVE-2024-27863](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27863) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20local%20attacker%20may%20be%20able%20to%20determine%20kernel%20memory%20layout&color=brighgreen) + +### Description + +An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. A local attacker may be able to determine kernel memory layout. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27871.md b/2024/CVE-2024-27871.md new file mode 100644 index 0000000000..f874711504 --- /dev/null +++ b/2024/CVE-2024-27871.md @@ -0,0 +1,20 @@ +### [CVE-2024-27871](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27871) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20access%20protected%20user%20data&color=brighgreen) + +### Description + +A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6. An app may be able to access protected user data. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27872.md b/2024/CVE-2024-27872.md new file mode 100644 index 0000000000..a8eb22d215 --- /dev/null +++ b/2024/CVE-2024-27872.md @@ -0,0 +1,17 @@ +### [CVE-2024-27872](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27872) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20access%20protected%20user%20data&color=brighgreen) + +### Description + +This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sonoma 14.6. An app may be able to access protected user data. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27873.md b/2024/CVE-2024-27873.md new file mode 100644 index 0000000000..2c3762df02 --- /dev/null +++ b/2024/CVE-2024-27873.md @@ -0,0 +1,22 @@ +### [CVE-2024-27873](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27873) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20a%20maliciously%20crafted%20video%20file%20may%20lead%20to%20unexpected%20app%20termination&color=brighgreen) + +### Description + +An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Processing a maliciously crafted video file may lead to unexpected app termination. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27877.md b/2024/CVE-2024-27877.md new file mode 100644 index 0000000000..09ef503513 --- /dev/null +++ b/2024/CVE-2024-27877.md @@ -0,0 +1,18 @@ +### [CVE-2024-27877](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27877) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20a%20maliciously%20crafted%20file%20may%20lead%20to%20a%20denial-of-service%20or%20potentially%20disclose%20memory%20contents&color=brighgreen) + +### Description + +The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. Processing a maliciously crafted file may lead to a denial-of-service or potentially disclose memory contents. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27878.md b/2024/CVE-2024-27878.md new file mode 100644 index 0000000000..8a2ace13e6 --- /dev/null +++ b/2024/CVE-2024-27878.md @@ -0,0 +1,17 @@ +### [CVE-2024-27878](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27878) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20with%20root%20privileges%20may%20be%20able%20to%20execute%20arbitrary%20code%20with%20kernel%20privileges&color=brighgreen) + +### Description + +A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.6. An app with root privileges may be able to execute arbitrary code with kernel privileges. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27881.md b/2024/CVE-2024-27881.md new file mode 100644 index 0000000000..02ce76f8ee --- /dev/null +++ b/2024/CVE-2024-27881.md @@ -0,0 +1,18 @@ +### [CVE-2024-27881](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27881) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20access%20information%20about%20a%20user%E2%80%99s%20contacts&color=brighgreen) + +### Description + +A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to access information about a user’s contacts. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27882.md b/2024/CVE-2024-27882.md new file mode 100644 index 0000000000..84e2d50d4c --- /dev/null +++ b/2024/CVE-2024-27882.md @@ -0,0 +1,18 @@ +### [CVE-2024-27882](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27882) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20modify%20protected%20parts%20of%20the%20file%20system&color=brighgreen) + +### Description + +A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to modify protected parts of the file system. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-27883.md b/2024/CVE-2024-27883.md new file mode 100644 index 0000000000..4fabb1135f --- /dev/null +++ b/2024/CVE-2024-27883.md @@ -0,0 +1,18 @@ +### [CVE-2024-27883](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27883) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20modify%20protected%20parts%20of%20the%20file%20system&color=brighgreen) + +### Description + +A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to modify protected parts of the file system. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-28397.md b/2024/CVE-2024-28397.md index da386528e6..743c4a79da 100644 --- a/2024/CVE-2024-28397.md +++ b/2024/CVE-2024-28397.md @@ -14,5 +14,6 @@ No PoCs from references. #### Github - https://github.com/Marven11/CVE-2024-28397 +- https://github.com/Marven11/CVE-2024-28397-js2py-Sandbox-Escape - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-28995.md b/2024/CVE-2024-28995.md index 7465b83553..90724a4327 100644 --- a/2024/CVE-2024-28995.md +++ b/2024/CVE-2024-28995.md @@ -13,9 +13,13 @@ SolarWinds Serv-U was susceptible to a directory transversal vulnerability that No PoCs from references. #### Github +- https://github.com/0xc4t/CVE-2024-28995 - https://github.com/Ostorlab/KEV +- https://github.com/bigb0x/CVE-2024-28995 - https://github.com/enomothem/PenTestNote +- https://github.com/krypton-kry/CVE-2024-28995 - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/onewinner/POCS - https://github.com/tanjiti/sec_profile - https://github.com/wjlin0/poc-doc - https://github.com/wy876/POC diff --git a/2024/CVE-2024-28999.md b/2024/CVE-2024-28999.md index 4fcef0a241..46f991c206 100644 --- a/2024/CVE-2024-28999.md +++ b/2024/CVE-2024-28999.md @@ -13,5 +13,6 @@ The SolarWinds Platform was determined to be affected by a Race Condition Vulner No PoCs from references. #### Github +- https://github.com/HussainFathy/CVE-2024-28999 - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-29275.md b/2024/CVE-2024-29275.md index de03bbe97e..c9430ea97e 100644 --- a/2024/CVE-2024-29275.md +++ b/2024/CVE-2024-29275.md @@ -13,6 +13,7 @@ SQL injection vulnerability in SeaCMS version 12.9, allows remote unauthenticate - https://github.com/seacms-net/CMS/issues/15 #### Github +- https://github.com/Cyphercoda/nuclei_template - https://github.com/NaInSec/CVE-LIST - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-29824.md b/2024/CVE-2024-29824.md index 24befc7a16..ba16ccd5f9 100644 --- a/2024/CVE-2024-29824.md +++ b/2024/CVE-2024-29824.md @@ -15,6 +15,7 @@ No PoCs from references. #### Github - https://github.com/Ostorlab/KEV - https://github.com/enomothem/PenTestNote +- https://github.com/horizon3ai/CVE-2024-29824 - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/wjlin0/poc-doc - https://github.com/wy876/POC diff --git a/2024/CVE-2024-29855.md b/2024/CVE-2024-29855.md index 80f7d1b210..40e7161ace 100644 --- a/2024/CVE-2024-29855.md +++ b/2024/CVE-2024-29855.md @@ -14,4 +14,5 @@ No PoCs from references. #### Github - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/sinsinology/CVE-2024-29855 diff --git a/2024/CVE-2024-29973.md b/2024/CVE-2024-29973.md index 21ed4e8703..5ea7c1016c 100644 --- a/2024/CVE-2024-29973.md +++ b/2024/CVE-2024-29973.md @@ -16,6 +16,10 @@ #### Github - https://github.com/Ostorlab/KEV +- https://github.com/RevoltSecurities/CVE-2024-29973 +- https://github.com/bigb0x/CVE-2024-29973 +- https://github.com/k3lpi3b4nsh33/CVE-2024-29973 +- https://github.com/momika233/CVE-2024-29973 - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/wjlin0/poc-doc - https://github.com/wy876/POC diff --git a/2024/CVE-2024-30078.md b/2024/CVE-2024-30078.md index e1bd953f6d..af92c063e0 100644 --- a/2024/CVE-2024-30078.md +++ b/2024/CVE-2024-30078.md @@ -51,10 +51,12 @@ No PoCs from references. #### Github - https://github.com/0xMarcio/cve +- https://github.com/52by/CVE-2024-30078 - https://github.com/GhostTroops/TOP - https://github.com/Jappie3/starred - https://github.com/blkph0x/CVE_2024_30078_POC_WIFI - https://github.com/enomothem/PenTestNote +- https://github.com/kvx07/CVE_2024_30078_A_POC - https://github.com/lvyitian/CVE-2024-30078- - https://github.com/nkontopoul/checkwifivulnerability - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-30212.md b/2024/CVE-2024-30212.md index 4bb476295d..1cf5592fa3 100644 --- a/2024/CVE-2024-30212.md +++ b/2024/CVE-2024-30212.md @@ -13,5 +13,6 @@ If a SCSI READ(10) command is initiated via USB using the largest LBA (0xFFFFFFF - https://github.com/Fehr-GmbH/blackleak #### Github +- https://github.com/Fehr-GmbH/blackleak - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-30270.md b/2024/CVE-2024-30270.md index 818c1a20ba..f07f7210ae 100644 --- a/2024/CVE-2024-30270.md +++ b/2024/CVE-2024-30270.md @@ -13,5 +13,6 @@ mailcow: dockerized is an open source groupware/email suite based on docker. A s No PoCs from references. #### Github +- https://github.com/Alchemist3dot14/CVE-2024-30270-PoC - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-3094.md b/2024/CVE-2024-3094.md index bbaacaa273..c27dcb325b 100644 --- a/2024/CVE-2024-3094.md +++ b/2024/CVE-2024-3094.md @@ -71,6 +71,7 @@ Malicious code was discovered in the upstream tarballs of xz, starting with vers - https://github.com/buluma/ansible-role-openjdk - https://github.com/buluma/buluma - https://github.com/byinarie/CVE-2024-3094-info +- https://github.com/c4pt000/kernel-6.8.3-expSEHDsec-fclock-fsync-cpu - https://github.com/chadsr/stars - https://github.com/chavezvic/update-checker-Penguin - https://github.com/christoofar/safexz diff --git a/2024/CVE-2024-31211.md b/2024/CVE-2024-31211.md index 464c91cb85..78f4e90f27 100644 --- a/2024/CVE-2024-31211.md +++ b/2024/CVE-2024-31211.md @@ -14,4 +14,5 @@ No PoCs from references. #### Github - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/truocphan/TP-VulnBox diff --git a/2024/CVE-2024-31861.md b/2024/CVE-2024-31861.md index a442273d3c..d9225c319c 100644 --- a/2024/CVE-2024-31861.md +++ b/2024/CVE-2024-31861.md @@ -14,5 +14,6 @@ No PoCs from references. #### Github - https://github.com/enomothem/PenTestNote +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/tanjiti/sec_profile diff --git a/2024/CVE-2024-31982.md b/2024/CVE-2024-31982.md index bcc79035b6..e671fccc64 100644 --- a/2024/CVE-2024-31982.md +++ b/2024/CVE-2024-31982.md @@ -14,6 +14,7 @@ No PoCs from references. #### Github - https://github.com/Ostorlab/KEV +- https://github.com/bigb0x/CVE-2024-31982 - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/tanjiti/sec_profile diff --git a/2024/CVE-2024-32709.md b/2024/CVE-2024-32709.md index 2ec913496d..2cf3424944 100644 --- a/2024/CVE-2024-32709.md +++ b/2024/CVE-2024-32709.md @@ -13,6 +13,7 @@ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti No PoCs from references. #### Github +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/truonghuuphuc/CVE-2024-32709-Poc - https://github.com/wy876/POC diff --git a/2024/CVE-2024-34064.md b/2024/CVE-2024-34064.md index b84a29a2b6..747cf08ce1 100644 --- a/2024/CVE-2024-34064.md +++ b/2024/CVE-2024-34064.md @@ -14,4 +14,5 @@ No PoCs from references. #### Github - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/rohaquinlop/immunipy diff --git a/2024/CVE-2024-34470.md b/2024/CVE-2024-34470.md index 573c616ff4..ceb9471485 100644 --- a/2024/CVE-2024-34470.md +++ b/2024/CVE-2024-34470.md @@ -13,10 +13,13 @@ An issue was discovered in HSC Mailinspector 5.2.17-3 through v.5.2.18. An Unaut - https://github.com/osvaldotenorio/CVE-2024-34470 #### Github +- https://github.com/Mr-r00t11/CVE-2024-34470 - https://github.com/Ostorlab/KEV +- https://github.com/bigb0x/CVE-2024-34470 - https://github.com/fkie-cad/nvd-json-data-feeds - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/osvaldotenorio/CVE-2024-34470 +- https://github.com/th3gokul/CVE-2024-34470 - https://github.com/wjlin0/poc-doc - https://github.com/wy876/POC - https://github.com/wy876/wiki diff --git a/2024/CVE-2024-34621.md b/2024/CVE-2024-34621.md new file mode 100644 index 0000000000..169c94e189 --- /dev/null +++ b/2024/CVE-2024-34621.md @@ -0,0 +1,17 @@ +### [CVE-2024-34621](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34621) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in applying binary with data in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34622.md b/2024/CVE-2024-34622.md new file mode 100644 index 0000000000..68dadd92d0 --- /dev/null +++ b/2024/CVE-2024-34622.md @@ -0,0 +1,17 @@ +### [CVE-2024-34622](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34622) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-787%3A%20Out-of-bounds%20Write&color=brighgreen) + +### Description + +Out-of-bounds write in appending paragraph in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially execute arbitrary code with Samsung Notes privilege. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34623.md b/2024/CVE-2024-34623.md new file mode 100644 index 0000000000..75dfa4d3bf --- /dev/null +++ b/2024/CVE-2024-34623.md @@ -0,0 +1,17 @@ +### [CVE-2024-34623](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34623) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-787%3A%20Out-of-bounds%20Write&color=brighgreen) + +### Description + +Out-of-bounds write in applying connected information in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially execute arbitrary code with Samsung Notes privilege. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34624.md b/2024/CVE-2024-34624.md new file mode 100644 index 0000000000..024ea131ee --- /dev/null +++ b/2024/CVE-2024-34624.md @@ -0,0 +1,17 @@ +### [CVE-2024-34624](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34624) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in applying paragraphs in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34625.md b/2024/CVE-2024-34625.md new file mode 100644 index 0000000000..ebfbb767d0 --- /dev/null +++ b/2024/CVE-2024-34625.md @@ -0,0 +1,17 @@ +### [CVE-2024-34625](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34625) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in applying connection point in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34626.md b/2024/CVE-2024-34626.md new file mode 100644 index 0000000000..e526b94f24 --- /dev/null +++ b/2024/CVE-2024-34626.md @@ -0,0 +1,17 @@ +### [CVE-2024-34626](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34626) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in applying own binary in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34627.md b/2024/CVE-2024-34627.md new file mode 100644 index 0000000000..82cfe2ddb2 --- /dev/null +++ b/2024/CVE-2024-34627.md @@ -0,0 +1,17 @@ +### [CVE-2024-34627](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34627) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in parsing implemention in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34628.md b/2024/CVE-2024-34628.md new file mode 100644 index 0000000000..ff510643c7 --- /dev/null +++ b/2024/CVE-2024-34628.md @@ -0,0 +1,17 @@ +### [CVE-2024-34628](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34628) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in applying binary with path in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34629.md b/2024/CVE-2024-34629.md new file mode 100644 index 0000000000..619256969e --- /dev/null +++ b/2024/CVE-2024-34629.md @@ -0,0 +1,17 @@ +### [CVE-2024-34629](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34629) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in applying binary with text common object in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34630.md b/2024/CVE-2024-34630.md new file mode 100644 index 0000000000..d2959d6436 --- /dev/null +++ b/2024/CVE-2024-34630.md @@ -0,0 +1,17 @@ +### [CVE-2024-34630](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34630) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in applying own binary with textbox in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34631.md b/2024/CVE-2024-34631.md new file mode 100644 index 0000000000..7ab486ec40 --- /dev/null +++ b/2024/CVE-2024-34631.md @@ -0,0 +1,17 @@ +### [CVE-2024-34631](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34631) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in applying new binary in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34632.md b/2024/CVE-2024-34632.md new file mode 100644 index 0000000000..c9fba5163f --- /dev/null +++ b/2024/CVE-2024-34632.md @@ -0,0 +1,17 @@ +### [CVE-2024-34632](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34632) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in uuid parsing in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34633.md b/2024/CVE-2024-34633.md new file mode 100644 index 0000000000..e4b291bfe6 --- /dev/null +++ b/2024/CVE-2024-34633.md @@ -0,0 +1,17 @@ +### [CVE-2024-34633](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34633) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in parsing object header in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34634.md b/2024/CVE-2024-34634.md new file mode 100644 index 0000000000..7f26e7a9f3 --- /dev/null +++ b/2024/CVE-2024-34634.md @@ -0,0 +1,17 @@ +### [CVE-2024-34634](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34634) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in parsing connected object list in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34635.md b/2024/CVE-2024-34635.md new file mode 100644 index 0000000000..d2914c18eb --- /dev/null +++ b/2024/CVE-2024-34635.md @@ -0,0 +1,17 @@ +### [CVE-2024-34635](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34635) +![](https://img.shields.io/static/v1?label=Product&message=Samsung%20Notes&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-125%3A%20Out-of-bounds%20Read&color=brighgreen) + +### Description + +Out-of-bounds read in parsing textbox object in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34683.md b/2024/CVE-2024-34683.md new file mode 100644 index 0000000000..4c4e26a5a9 --- /dev/null +++ b/2024/CVE-2024-34683.md @@ -0,0 +1,17 @@ +### [CVE-2024-34683](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34683) +![](https://img.shields.io/static/v1?label=Product&message=SAP%20Document%20Builder&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=%3D%20S4CORE%20100%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-434%3A%20Unrestricted%20Upload%20of%20File%20with%20Dangerous%20Type&color=brighgreen) + +### Description + +An authenticated attacker can upload maliciousfile to SAP Document Builder service. When the victim accesses this file, theattacker is allowed to access, modify, or make the related informationunavailable in the victim’s browser. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/fkie-cad/nvd-json-data-feeds + diff --git a/2024/CVE-2024-34982.md b/2024/CVE-2024-34982.md index a92819ad76..6fcf7e93d2 100644 --- a/2024/CVE-2024-34982.md +++ b/2024/CVE-2024-34982.md @@ -13,5 +13,6 @@ An arbitrary file upload vulnerability in the component /include/file.php of lyl No PoCs from references. #### Github +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/tanjiti/sec_profile diff --git a/2024/CVE-2024-36104.md b/2024/CVE-2024-36104.md index 327dae1fd1..62c219a82b 100644 --- a/2024/CVE-2024-36104.md +++ b/2024/CVE-2024-36104.md @@ -18,6 +18,7 @@ No PoCs from references. - https://github.com/RacerZ-fighting/CVE-2024-32113-POC - https://github.com/Threekiii/Awesome-POC - https://github.com/Threekiii/CVE +- https://github.com/ahisec/nuclei-tps - https://github.com/enomothem/PenTestNote - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/tanjiti/sec_profile diff --git a/2024/CVE-2024-36401.md b/2024/CVE-2024-36401.md index 5d5db74108..58deda85aa 100644 --- a/2024/CVE-2024-36401.md +++ b/2024/CVE-2024-36401.md @@ -22,7 +22,9 @@ GeoServer is an open source server that allows users to share and edit geospatia - https://github.com/Threekiii/CVE - https://github.com/TrojanAZhen/Self_Back - https://github.com/Y4tacker/JavaSec +- https://github.com/ahisec/nuclei-tps - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/onewinner/POCS - https://github.com/peiqiF4ck/WebFrameworkTools-5.1-main - https://github.com/tanjiti/sec_profile - https://github.com/wy876/POC diff --git a/2024/CVE-2024-36527.md b/2024/CVE-2024-36527.md index 740a16104f..21cf70352c 100644 --- a/2024/CVE-2024-36527.md +++ b/2024/CVE-2024-36527.md @@ -13,5 +13,6 @@ puppeteer-renderer v.3.2.0 and before is vulnerable to Directory Traversal. Atta - https://gist.github.com/7a6163/25fef08f75eed219c8ca21e332d6e911 #### Github +- https://github.com/bigb0x/CVE-2024-36527 - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-36837.md b/2024/CVE-2024-36837.md index ee14f41a54..b7a4b11a34 100644 --- a/2024/CVE-2024-36837.md +++ b/2024/CVE-2024-36837.md @@ -14,5 +14,6 @@ SQL Injection vulnerability in CRMEB v.5.2.2 allows a remote attacker to obtain #### Github - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/phtcloud-dev/CVE-2024-36837 - https://github.com/tanjiti/sec_profile diff --git a/2024/CVE-2024-36840.md b/2024/CVE-2024-36840.md index 8127939152..435128022d 100644 --- a/2024/CVE-2024-36840.md +++ b/2024/CVE-2024-36840.md @@ -16,5 +16,5 @@ SQL Injection vulnerability in Boelter Blue System Management v.1.3 allows a rem - https://sploitus.com/exploit?id=PACKETSTORM:178978 #### Github -No PoCs found on GitHub currently. +- https://github.com/InfoSec-DB/InfoSec-DB diff --git a/2024/CVE-2024-36991.md b/2024/CVE-2024-36991.md index 1803c7d4d7..0fda23b7d5 100644 --- a/2024/CVE-2024-36991.md +++ b/2024/CVE-2024-36991.md @@ -15,4 +15,5 @@ No PoCs from references. #### Github - https://github.com/Ostorlab/KEV - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/onewinner/POCS diff --git a/2024/CVE-2024-37051.md b/2024/CVE-2024-37051.md index 91829c27be..34a0cbfc60 100644 --- a/2024/CVE-2024-37051.md +++ b/2024/CVE-2024-37051.md @@ -30,5 +30,6 @@ GitHub access token could be exposed to third-party sites in JetBrains IDEs afte No PoCs from references. #### Github +- https://github.com/LeadroyaL/CVE-2024-37051-EXP - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-37742.md b/2024/CVE-2024-37742.md index 2082e0740b..9000fb3dcd 100644 --- a/2024/CVE-2024-37742.md +++ b/2024/CVE-2024-37742.md @@ -13,5 +13,6 @@ Insecure Access Control in Safe Exam Browser (SEB) = 3.5.0 on Windows. The vulne - https://github.com/Eteblue/CVE-2024-37742 #### Github +- https://github.com/Eteblue/CVE-2024-37742 - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-37843.md b/2024/CVE-2024-37843.md index c0f144ddac..ff0b189b00 100644 --- a/2024/CVE-2024-37843.md +++ b/2024/CVE-2024-37843.md @@ -13,5 +13,6 @@ Craft CMS up to v3.7.31 was discovered to contain a SQL injection vulnerability - https://blog.smithsecurity.biz/craft-cms-unauthenticated-sqli-via-graphql #### Github +- https://github.com/gsmith257-cyber/CVE-2024-37843-POC - https://github.com/nomi-sec/PoC-in-GitHub diff --git a/2024/CVE-2024-38077.md b/2024/CVE-2024-38077.md index 33cd63b4be..abafc7fa9d 100644 --- a/2024/CVE-2024-38077.md +++ b/2024/CVE-2024-38077.md @@ -36,6 +36,9 @@ No PoCs from references. #### Github - https://github.com/0xMarcio/cve +- https://github.com/BambiZombie/CVE-2024-38077-check +- https://github.com/GhostTroops/TOP - https://github.com/TrojanAZhen/Self_Back - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/silentEAG/awesome-stars diff --git a/2024/CVE-2024-38395.md b/2024/CVE-2024-38395.md index b256ea9013..97ebc435f6 100644 --- a/2024/CVE-2024-38395.md +++ b/2024/CVE-2024-38395.md @@ -14,4 +14,5 @@ In iTerm2 before 3.5.2, the "Terminal may report window title" setting is not ho #### Github - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/vin01/poc-cve-2024-38396 diff --git a/2024/CVE-2024-38396.md b/2024/CVE-2024-38396.md index 9d7b859462..2ea9830460 100644 --- a/2024/CVE-2024-38396.md +++ b/2024/CVE-2024-38396.md @@ -15,4 +15,5 @@ An issue was discovered in iTerm2 3.5.x before 3.5.2. Unfiltered use of an escap #### Github - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/vin01/poc-cve-2024-38396 diff --git a/2024/CVE-2024-38856.md b/2024/CVE-2024-38856.md index cdd4357ec5..55f297b103 100644 --- a/2024/CVE-2024-38856.md +++ b/2024/CVE-2024-38856.md @@ -18,6 +18,7 @@ No PoCs from references. - https://github.com/RacerZ-fighting/CVE-2024-32113-POC - https://github.com/RacerZ-fighting/RacerZ-fighting - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/tanjiti/sec_profile - https://github.com/wy876/POC diff --git a/2024/CVE-2024-3921.md b/2024/CVE-2024-3921.md index 7534a4945c..79c62c009b 100644 --- a/2024/CVE-2024-3921.md +++ b/2024/CVE-2024-3921.md @@ -13,5 +13,5 @@ The Gianism WordPress plugin through 5.1.0 does not sanitise and escape some of - https://wpscan.com/vulnerability/3c114e14-9113-411d-91f3-2e2daeb40739/ #### Github -No PoCs found on GitHub currently. +- https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2024/CVE-2024-39251.md b/2024/CVE-2024-39251.md index c6a87f2e50..484fb8f12f 100644 --- a/2024/CVE-2024-39251.md +++ b/2024/CVE-2024-39251.md @@ -13,5 +13,5 @@ An issue in the component ControlCenter.sys/ControlCenter64.sys of ThundeRobot C - https://github.com/Souhardya/Exploit-PoCs/tree/main/ThundeRobot_Control_center #### Github -No PoCs found on GitHub currently. +- https://github.com/Souhardya/Exploit-PoCs diff --git a/2024/CVE-2024-3959.md b/2024/CVE-2024-3959.md new file mode 100644 index 0000000000..1650357796 --- /dev/null +++ b/2024/CVE-2024-3959.md @@ -0,0 +1,17 @@ +### [CVE-2024-3959](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3959) +![](https://img.shields.io/static/v1?label=Product&message=GitLab&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=16.7%3C%2016.11.5%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-285%3A%20Improper%20Authorization&color=brighgreen) + +### Description + +An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1 prior to 17.1.1, which allows private job artifacts can be accessed by any user. + +### POC + +#### Reference +- https://gitlab.com/gitlab-org/gitlab/-/issues/456989 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-39644.md b/2024/CVE-2024-39644.md new file mode 100644 index 0000000000..d65b201663 --- /dev/null +++ b/2024/CVE-2024-39644.md @@ -0,0 +1,17 @@ +### [CVE-2024-39644](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39644) +![](https://img.shields.io/static/v1?label=Product&message=Black%20Widgets%20For%20Elementor&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-79%20Improper%20Neutralization%20of%20Input%20During%20Web%20Page%20Generation%20(XSS%20or%20'Cross-site%20Scripting')&color=brighgreen) + +### Description + +Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Modernaweb Studio Black Widgets For Elementor allows Stored XSS.This issue affects Black Widgets For Elementor: from n/a through 1.3.5. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-39662.md b/2024/CVE-2024-39662.md new file mode 100644 index 0000000000..ff6030d892 --- /dev/null +++ b/2024/CVE-2024-39662.md @@ -0,0 +1,17 @@ +### [CVE-2024-39662](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39662) +![](https://img.shields.io/static/v1?label=Product&message=Black%20Widgets%20For%20Elementor&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-79%20Improper%20Neutralization%20of%20Input%20During%20Web%20Page%20Generation%20(XSS%20or%20'Cross-site%20Scripting')&color=brighgreen) + +### Description + +Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Modernaweb Studio Black Widgets For Elementor allows Stored XSS.This issue affects Black Widgets For Elementor: from n/a through 1.3.5. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-4040.md b/2024/CVE-2024-4040.md index 9f0e718590..b3ee687d81 100644 --- a/2024/CVE-2024-4040.md +++ b/2024/CVE-2024-4040.md @@ -30,6 +30,7 @@ A server side template injection vulnerability in CrushFTP in all versions befor - https://github.com/getdrive/PoC - https://github.com/gotr00t0day/CVE-2024-4040 - https://github.com/jakabakos/CVE-2024-4040-CrushFTP-File-Read-vulnerability +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nitish778191/fitness_app - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/qt2a23/CVE-2024-4040 diff --git a/2024/CVE-2024-40774.md b/2024/CVE-2024-40774.md new file mode 100644 index 0000000000..555e81cb7e --- /dev/null +++ b/2024/CVE-2024-40774.md @@ -0,0 +1,24 @@ +### [CVE-2024-40774](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40774) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20bypass%20Privacy%20preferences&color=brighgreen) + +### Description + +A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, macOS Sonoma 14.6. An app may be able to bypass Privacy preferences. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40775.md b/2024/CVE-2024-40775.md new file mode 100644 index 0000000000..6c37af940d --- /dev/null +++ b/2024/CVE-2024-40775.md @@ -0,0 +1,18 @@ +### [CVE-2024-40775](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40775) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20leak%20sensitive%20user%20information&color=brighgreen) + +### Description + +A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to leak sensitive user information. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40776.md b/2024/CVE-2024-40776.md new file mode 100644 index 0000000000..0e21461074 --- /dev/null +++ b/2024/CVE-2024-40776.md @@ -0,0 +1,26 @@ +### [CVE-2024-40776](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40776) +![](https://img.shields.io/static/v1?label=Product&message=Safari&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20maliciously%20crafted%20web%20content%20may%20lead%20to%20an%20unexpected%20process%20crash&color=brighgreen) + +### Description + +A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40777.md b/2024/CVE-2024-40777.md new file mode 100644 index 0000000000..55d6c81270 --- /dev/null +++ b/2024/CVE-2024-40777.md @@ -0,0 +1,24 @@ +### [CVE-2024-40777](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40777) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20a%20maliciously%20crafted%20file%20may%20lead%20to%20unexpected%20app%20termination&color=brighgreen) + +### Description + +An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing a maliciously crafted file may lead to unexpected app termination. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40778.md b/2024/CVE-2024-40778.md new file mode 100644 index 0000000000..11b6556208 --- /dev/null +++ b/2024/CVE-2024-40778.md @@ -0,0 +1,21 @@ +### [CVE-2024-40778](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40778) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Photos%20in%20the%20Hidden%20Photos%20Album%20may%20be%20viewed%20without%20authentication&color=brighgreen) + +### Description + +An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. Photos in the Hidden Photos Album may be viewed without authentication. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40779.md b/2024/CVE-2024-40779.md new file mode 100644 index 0000000000..0eab49a557 --- /dev/null +++ b/2024/CVE-2024-40779.md @@ -0,0 +1,26 @@ +### [CVE-2024-40779](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40779) +![](https://img.shields.io/static/v1?label=Product&message=Safari&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20maliciously%20crafted%20web%20content%20may%20lead%20to%20an%20unexpected%20process%20crash&color=brighgreen) + +### Description + +An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40780.md b/2024/CVE-2024-40780.md new file mode 100644 index 0000000000..9c7864b5c3 --- /dev/null +++ b/2024/CVE-2024-40780.md @@ -0,0 +1,26 @@ +### [CVE-2024-40780](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40780) +![](https://img.shields.io/static/v1?label=Product&message=Safari&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20maliciously%20crafted%20web%20content%20may%20lead%20to%20an%20unexpected%20process%20crash&color=brighgreen) + +### Description + +An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40781.md b/2024/CVE-2024-40781.md new file mode 100644 index 0000000000..1576c905c0 --- /dev/null +++ b/2024/CVE-2024-40781.md @@ -0,0 +1,18 @@ +### [CVE-2024-40781](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40781) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20local%20attacker%20may%20be%20able%20to%20elevate%20their%20privileges&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A local attacker may be able to elevate their privileges. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40782.md b/2024/CVE-2024-40782.md new file mode 100644 index 0000000000..a923becc40 --- /dev/null +++ b/2024/CVE-2024-40782.md @@ -0,0 +1,26 @@ +### [CVE-2024-40782](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40782) +![](https://img.shields.io/static/v1?label=Product&message=Safari&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20maliciously%20crafted%20web%20content%20may%20lead%20to%20an%20unexpected%20process%20crash&color=brighgreen) + +### Description + +A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40783.md b/2024/CVE-2024-40783.md new file mode 100644 index 0000000000..e5dddb62c8 --- /dev/null +++ b/2024/CVE-2024-40783.md @@ -0,0 +1,18 @@ +### [CVE-2024-40783](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40783) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20malicious%20application%20may%20be%20able%20to%20bypass%20Privacy%20preferences&color=brighgreen) + +### Description + +The issue was addressed with improved restriction of data container access. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A malicious application may be able to bypass Privacy preferences. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40784.md b/2024/CVE-2024-40784.md index bbadb4a7ac..45247eb075 100644 --- a/2024/CVE-2024-40784.md +++ b/2024/CVE-2024-40784.md @@ -17,7 +17,7 @@ An integer overflow was addressed with improved input validation. This issue is ### POC #### Reference -No PoCs from references. +- http://seclists.org/fulldisclosure/2024/Jul/16 #### Github - https://github.com/gandalf4a/crash_report diff --git a/2024/CVE-2024-40785.md b/2024/CVE-2024-40785.md new file mode 100644 index 0000000000..c2a82ccfd7 --- /dev/null +++ b/2024/CVE-2024-40785.md @@ -0,0 +1,26 @@ +### [CVE-2024-40785](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40785) +![](https://img.shields.io/static/v1?label=Product&message=Safari&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20maliciously%20crafted%20web%20content%20may%20lead%20to%20a%20cross%20site%20scripting%20attack&color=brighgreen) + +### Description + +This issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to a cross site scripting attack. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40786.md b/2024/CVE-2024-40786.md new file mode 100644 index 0000000000..134965fd87 --- /dev/null +++ b/2024/CVE-2024-40786.md @@ -0,0 +1,21 @@ +### [CVE-2024-40786](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40786) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20attacker%20may%20be%20able%20to%20view%20sensitive%20user%20information&color=brighgreen) + +### Description + +This issue was addressed through improved state management. This issue is fixed in iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8. An attacker may be able to view sensitive user information. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40787.md b/2024/CVE-2024-40787.md new file mode 100644 index 0000000000..86861fea33 --- /dev/null +++ b/2024/CVE-2024-40787.md @@ -0,0 +1,23 @@ +### [CVE-2024-40787](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40787) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20shortcut%20may%20be%20able%20to%20bypass%20Internet%20permission%20requirements&color=brighgreen) + +### Description + +This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6. A shortcut may be able to bypass Internet permission requirements. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40788.md b/2024/CVE-2024-40788.md new file mode 100644 index 0000000000..1c11c973ca --- /dev/null +++ b/2024/CVE-2024-40788.md @@ -0,0 +1,24 @@ +### [CVE-2024-40788](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40788) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20local%20attacker%20may%20be%20able%20to%20cause%20unexpected%20system%20shutdown&color=brighgreen) + +### Description + +A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. A local attacker may be able to cause unexpected system shutdown. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40789.md b/2024/CVE-2024-40789.md index 464bcc7cb0..4a10fd47e0 100644 --- a/2024/CVE-2024-40789.md +++ b/2024/CVE-2024-40789.md @@ -18,7 +18,8 @@ An out-of-bounds access issue was addressed with improved bounds checking. This ### POC #### Reference -No PoCs from references. +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/16 #### Github - https://github.com/leesh3288/leesh3288 diff --git a/2024/CVE-2024-40793.md b/2024/CVE-2024-40793.md new file mode 100644 index 0000000000..82d8c65109 --- /dev/null +++ b/2024/CVE-2024-40793.md @@ -0,0 +1,24 @@ +### [CVE-2024-40793](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40793) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20access%20user-sensitive%20data&color=brighgreen) + +### Description + +This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6. An app may be able to access user-sensitive data. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40794.md b/2024/CVE-2024-40794.md new file mode 100644 index 0000000000..55b781b8ce --- /dev/null +++ b/2024/CVE-2024-40794.md @@ -0,0 +1,22 @@ +### [CVE-2024-40794](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40794) +![](https://img.shields.io/static/v1?label=Product&message=Safari&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Private%20Browsing%20tabs%20may%20be%20accessed%20without%20authentication&color=brighgreen) + +### Description + +This issue was addressed through improved state management. This issue is fixed in macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, Safari 17.6. Private Browsing tabs may be accessed without authentication. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40795.md b/2024/CVE-2024-40795.md new file mode 100644 index 0000000000..1160732604 --- /dev/null +++ b/2024/CVE-2024-40795.md @@ -0,0 +1,22 @@ +### [CVE-2024-40795](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40795) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20read%20sensitive%20location%20information&color=brighgreen) + +### Description + +This issue was addressed with improved data protection. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, tvOS 17.6. An app may be able to read sensitive location information. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40796.md b/2024/CVE-2024-40796.md new file mode 100644 index 0000000000..9f23535852 --- /dev/null +++ b/2024/CVE-2024-40796.md @@ -0,0 +1,21 @@ +### [CVE-2024-40796](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40796) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2016.7%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Private%20browsing%20may%20leak%20some%20browsing%20history&color=brighgreen) + +### Description + +A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Monterey 12.7.6, macOS Ventura 13.6.8. Private browsing may leak some browsing history. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40798.md b/2024/CVE-2024-40798.md new file mode 100644 index 0000000000..91078ea357 --- /dev/null +++ b/2024/CVE-2024-40798.md @@ -0,0 +1,21 @@ +### [CVE-2024-40798](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40798) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2016.7%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20read%20Safari's%20browsing%20history&color=brighgreen) + +### Description + +This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sonoma 14.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to read Safari's browsing history. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40799.md b/2024/CVE-2024-40799.md new file mode 100644 index 0000000000..776c51451d --- /dev/null +++ b/2024/CVE-2024-40799.md @@ -0,0 +1,24 @@ +### [CVE-2024-40799](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40799) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20a%20maliciously%20crafted%20file%20may%20lead%20to%20unexpected%20app%20termination&color=brighgreen) + +### Description + +An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing a maliciously crafted file may lead to unexpected app termination. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40800.md b/2024/CVE-2024-40800.md new file mode 100644 index 0000000000..cf9680b39e --- /dev/null +++ b/2024/CVE-2024-40800.md @@ -0,0 +1,18 @@ +### [CVE-2024-40800](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40800) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20modify%20protected%20parts%20of%20the%20file%20system&color=brighgreen) + +### Description + +An input validation issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to modify protected parts of the file system. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40802.md b/2024/CVE-2024-40802.md new file mode 100644 index 0000000000..2b379a163a --- /dev/null +++ b/2024/CVE-2024-40802.md @@ -0,0 +1,18 @@ +### [CVE-2024-40802](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40802) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20local%20attacker%20may%20be%20able%20to%20elevate%20their%20privileges&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A local attacker may be able to elevate their privileges. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40803.md b/2024/CVE-2024-40803.md new file mode 100644 index 0000000000..c804bb825b --- /dev/null +++ b/2024/CVE-2024-40803.md @@ -0,0 +1,18 @@ +### [CVE-2024-40803](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40803) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20attacker%20may%20be%20able%20to%20cause%20unexpected%20app%20termination&color=brighgreen) + +### Description + +A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An attacker may be able to cause unexpected app termination. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40804.md b/2024/CVE-2024-40804.md new file mode 100644 index 0000000000..eed8b03c44 --- /dev/null +++ b/2024/CVE-2024-40804.md @@ -0,0 +1,17 @@ +### [CVE-2024-40804](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40804) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20malicious%20application%20may%20be%20able%20to%20access%20private%20information&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. A malicious application may be able to access private information. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40805.md b/2024/CVE-2024-40805.md new file mode 100644 index 0000000000..f5d05fdec8 --- /dev/null +++ b/2024/CVE-2024-40805.md @@ -0,0 +1,22 @@ +### [CVE-2024-40805](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40805) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20bypass%20Privacy%20preferences&color=brighgreen) + +### Description + +A permissions issue was addressed with additional restrictions. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, tvOS 17.6. An app may be able to bypass Privacy preferences. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40806.md b/2024/CVE-2024-40806.md new file mode 100644 index 0000000000..c7cb747dd5 --- /dev/null +++ b/2024/CVE-2024-40806.md @@ -0,0 +1,24 @@ +### [CVE-2024-40806](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40806) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Processing%20a%20maliciously%20crafted%20file%20may%20lead%20to%20unexpected%20app%20termination&color=brighgreen) + +### Description + +An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing a maliciously crafted file may lead to unexpected app termination. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40807.md b/2024/CVE-2024-40807.md new file mode 100644 index 0000000000..2bc1413eb4 --- /dev/null +++ b/2024/CVE-2024-40807.md @@ -0,0 +1,18 @@ +### [CVE-2024-40807](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40807) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20shortcut%20may%20be%20able%20to%20use%20sensitive%20data%20with%20certain%20actions%20without%20prompting%20the%20user&color=brighgreen) + +### Description + +A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to use sensitive data with certain actions without prompting the user. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40809.md b/2024/CVE-2024-40809.md new file mode 100644 index 0000000000..8a115b9368 --- /dev/null +++ b/2024/CVE-2024-40809.md @@ -0,0 +1,23 @@ +### [CVE-2024-40809](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40809) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20shortcut%20may%20be%20able%20to%20bypass%20Internet%20permission%20requirements&color=brighgreen) + +### Description + +A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, visionOS 1.3, macOS Sonoma 14.6. A shortcut may be able to bypass Internet permission requirements. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40811.md b/2024/CVE-2024-40811.md new file mode 100644 index 0000000000..ff54481137 --- /dev/null +++ b/2024/CVE-2024-40811.md @@ -0,0 +1,17 @@ +### [CVE-2024-40811](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40811) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20modify%20protected%20parts%20of%20the%20file%20system&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app may be able to modify protected parts of the file system. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40812.md b/2024/CVE-2024-40812.md new file mode 100644 index 0000000000..0da35a5d62 --- /dev/null +++ b/2024/CVE-2024-40812.md @@ -0,0 +1,23 @@ +### [CVE-2024-40812](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40812) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=visionOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%201.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20shortcut%20may%20be%20able%20to%20bypass%20Internet%20permission%20requirements&color=brighgreen) + +### Description + +A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, visionOS 1.3, macOS Sonoma 14.6. A shortcut may be able to bypass Internet permission requirements. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40813.md b/2024/CVE-2024-40813.md new file mode 100644 index 0000000000..548c8ccdd6 --- /dev/null +++ b/2024/CVE-2024-40813.md @@ -0,0 +1,19 @@ +### [CVE-2024-40813](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40813) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20attacker%20with%20physical%20access%20may%20be%20able%20to%20use%20Siri%20to%20access%20sensitive%20user%20data&color=brighgreen) + +### Description + +A lock screen issue was addressed with improved state management. This issue is fixed in watchOS 10.6, iOS 17.6 and iPadOS 17.6. An attacker with physical access may be able to use Siri to access sensitive user data. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40814.md b/2024/CVE-2024-40814.md new file mode 100644 index 0000000000..8390d530b0 --- /dev/null +++ b/2024/CVE-2024-40814.md @@ -0,0 +1,17 @@ +### [CVE-2024-40814](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40814) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20bypass%20Privacy%20preferences&color=brighgreen) + +### Description + +A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.6. An app may be able to bypass Privacy preferences. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40815.md b/2024/CVE-2024-40815.md new file mode 100644 index 0000000000..b9922d9742 --- /dev/null +++ b/2024/CVE-2024-40815.md @@ -0,0 +1,24 @@ +### [CVE-2024-40815](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40815) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20malicious%20attacker%20with%20arbitrary%20read%20and%20write%20capability%20may%20be%20able%20to%20bypass%20Pointer%20Authentication&color=brighgreen) + +### Description + +A race condition was addressed with additional validation. This issue is fixed in macOS Ventura 13.6.8, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, macOS Sonoma 14.6. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40816.md b/2024/CVE-2024-40816.md new file mode 100644 index 0000000000..5225cb84e6 --- /dev/null +++ b/2024/CVE-2024-40816.md @@ -0,0 +1,18 @@ +### [CVE-2024-40816](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40816) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20local%20attacker%20may%20be%20able%20to%20cause%20unexpected%20system%20shutdown&color=brighgreen) + +### Description + +An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A local attacker may be able to cause unexpected system shutdown. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40817.md b/2024/CVE-2024-40817.md new file mode 100644 index 0000000000..fbf4b65962 --- /dev/null +++ b/2024/CVE-2024-40817.md @@ -0,0 +1,21 @@ +### [CVE-2024-40817](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40817) +![](https://img.shields.io/static/v1?label=Product&message=Safari&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Visiting%20a%20website%20that%20frames%20malicious%20content%20may%20lead%20to%20UI%20spoofing&color=brighgreen) + +### Description + +The issue was addressed with improved UI handling. This issue is fixed in macOS Sonoma 14.6, Safari 17.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. Visiting a website that frames malicious content may lead to UI spoofing. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40818.md b/2024/CVE-2024-40818.md new file mode 100644 index 0000000000..2d06a72bca --- /dev/null +++ b/2024/CVE-2024-40818.md @@ -0,0 +1,24 @@ +### [CVE-2024-40818](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40818) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20attacker%20with%20physical%20access%20may%20be%20able%20to%20use%20Siri%20to%20access%20sensitive%20user%20data&color=brighgreen) + +### Description + +This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, iOS 17.6 and iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6. An attacker with physical access may be able to use Siri to access sensitive user data. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40821.md b/2024/CVE-2024-40821.md new file mode 100644 index 0000000000..87facfd071 --- /dev/null +++ b/2024/CVE-2024-40821.md @@ -0,0 +1,18 @@ +### [CVE-2024-40821](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40821) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Third%20party%20app%20extensions%20may%20not%20receive%20the%20correct%20sandbox%20restrictions&color=brighgreen) + +### Description + +An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. Third party app extensions may not receive the correct sandbox restrictions. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40822.md b/2024/CVE-2024-40822.md new file mode 100644 index 0000000000..7a1c89a313 --- /dev/null +++ b/2024/CVE-2024-40822.md @@ -0,0 +1,21 @@ +### [CVE-2024-40822](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40822) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20attacker%20with%20physical%20access%20to%20a%20device%20may%20be%20able%20to%20access%20contacts%20from%20the%20lock%20screen&color=brighgreen) + +### Description + +This issue was addressed by restricting options offered on a locked device. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. An attacker with physical access to a device may be able to access contacts from the lock screen. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40823.md b/2024/CVE-2024-40823.md new file mode 100644 index 0000000000..75707fe581 --- /dev/null +++ b/2024/CVE-2024-40823.md @@ -0,0 +1,18 @@ +### [CVE-2024-40823](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40823) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20access%20user-sensitive%20data&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to access user-sensitive data. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40824.md b/2024/CVE-2024-40824.md new file mode 100644 index 0000000000..4dea0972ba --- /dev/null +++ b/2024/CVE-2024-40824.md @@ -0,0 +1,23 @@ +### [CVE-2024-40824](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40824) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=tvOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20bypass%20Privacy%20preferences&color=brighgreen) + +### Description + +This issue was addressed through improved state management. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, tvOS 17.6. An app may be able to bypass Privacy preferences. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40827.md b/2024/CVE-2024-40827.md new file mode 100644 index 0000000000..fc3c85fa61 --- /dev/null +++ b/2024/CVE-2024-40827.md @@ -0,0 +1,18 @@ +### [CVE-2024-40827](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40827) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20overwrite%20arbitrary%20files&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to overwrite arbitrary files. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40828.md b/2024/CVE-2024-40828.md new file mode 100644 index 0000000000..1d6947ce6b --- /dev/null +++ b/2024/CVE-2024-40828.md @@ -0,0 +1,18 @@ +### [CVE-2024-40828](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40828) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20malicious%20app%20may%20be%20able%20to%20gain%20root%20privileges&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A malicious app may be able to gain root privileges. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40829.md b/2024/CVE-2024-40829.md new file mode 100644 index 0000000000..03f2477a86 --- /dev/null +++ b/2024/CVE-2024-40829.md @@ -0,0 +1,23 @@ +### [CVE-2024-40829](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40829) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20attacker%20may%20be%20able%20to%20view%20restricted%20content%20from%20the%20lock%20screen&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in watchOS 10.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8. An attacker may be able to view restricted content from the lock screen. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40832.md b/2024/CVE-2024-40832.md new file mode 100644 index 0000000000..6261b49d21 --- /dev/null +++ b/2024/CVE-2024-40832.md @@ -0,0 +1,17 @@ +### [CVE-2024-40832](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40832) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=An%20app%20may%20be%20able%20to%20view%20a%20contact's%20phone%20number%20in%20system%20logs&color=brighgreen) + +### Description + +The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app may be able to view a contact's phone number in system logs. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40833.md b/2024/CVE-2024-40833.md new file mode 100644 index 0000000000..14bccabfc7 --- /dev/null +++ b/2024/CVE-2024-40833.md @@ -0,0 +1,21 @@ +### [CVE-2024-40833](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40833) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2016.7%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20shortcut%20may%20be%20able%20to%20use%20sensitive%20data%20with%20certain%20actions%20without%20prompting%20the%20user&color=brighgreen) + +### Description + +A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to use sensitive data with certain actions without prompting the user. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40834.md b/2024/CVE-2024-40834.md new file mode 100644 index 0000000000..06d93906e1 --- /dev/null +++ b/2024/CVE-2024-40834.md @@ -0,0 +1,18 @@ +### [CVE-2024-40834](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40834) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20shortcut%20may%20be%20able%20to%20bypass%20sensitive%20Shortcuts%20app%20settings&color=brighgreen) + +### Description + +This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to bypass sensitive Shortcuts app settings. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40835.md b/2024/CVE-2024-40835.md new file mode 100644 index 0000000000..e80ab1926b --- /dev/null +++ b/2024/CVE-2024-40835.md @@ -0,0 +1,24 @@ +### [CVE-2024-40835](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40835) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2013.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20shortcut%20may%20be%20able%20to%20use%20sensitive%20data%20with%20certain%20actions%20without%20prompting%20the%20user&color=brighgreen) + +### Description + +A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6. A shortcut may be able to use sensitive data with certain actions without prompting the user. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-40836.md b/2024/CVE-2024-40836.md new file mode 100644 index 0000000000..c73e2a5e3f --- /dev/null +++ b/2024/CVE-2024-40836.md @@ -0,0 +1,23 @@ +### [CVE-2024-40836](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40836) +![](https://img.shields.io/static/v1?label=Product&message=iOS%20and%20iPadOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=watchOS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2010.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2014.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Version&message=unspecified%3C%2017.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20shortcut%20may%20be%20able%20to%20use%20sensitive%20data%20with%20certain%20actions%20without%20prompting%20the%20user&color=brighgreen) + +### Description + +A logic issue was addressed with improved checks. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. A shortcut may be able to use sensitive data with certain actions without prompting the user. + +### POC + +#### Reference +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/17 +- http://seclists.org/fulldisclosure/2024/Jul/18 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41109.md b/2024/CVE-2024-41109.md new file mode 100644 index 0000000000..5192186cdd --- /dev/null +++ b/2024/CVE-2024-41109.md @@ -0,0 +1,17 @@ +### [CVE-2024-41109](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41109) +![](https://img.shields.io/static/v1?label=Product&message=admin-ui-classic-bundle&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3C%201.5.2%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200%3A%20Exposure%20of%20Sensitive%20Information%20to%20an%20Unauthorized%20Actor&color=brighgreen) + +### Description + +Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. Navigating to `/admin/index/statistics` with a logged in Pimcore user exposes information about the Pimcore installation, PHP version, MYSQL version, installed bundles and all database tables and their row count in the system. This vulnerability is fixed in 1.5.2, 1.4.6, and 1.3.10. + +### POC + +#### Reference +- https://github.com/pimcore/admin-ui-classic-bundle/security/advisories/GHSA-fx6j-9pp6-ph36 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41123.md b/2024/CVE-2024-41123.md index b3a66d8fe3..b487baf3ff 100644 --- a/2024/CVE-2024-41123.md +++ b/2024/CVE-2024-41123.md @@ -13,5 +13,6 @@ REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulner No PoCs from references. #### Github +- https://github.com/ch4n3-yoon/ch4n3-yoon - https://github.com/lifeparticle/Ruby-Cheatsheet diff --git a/2024/CVE-2024-41332.md b/2024/CVE-2024-41332.md new file mode 100644 index 0000000000..d9d23285ea --- /dev/null +++ b/2024/CVE-2024-41332.md @@ -0,0 +1,17 @@ +### [CVE-2024-41332](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41332) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +Incorrect access control in the delete_category function of Sourcecodester Computer Laboratory Management System v1.0 allows authenticated attackers with low-level privileges to arbitrarily delete categories. + +### POC + +#### Reference +- https://packetstormsecurity.com/files/179890/Computer-Laboratory-Management-System-1.0-Privilege-Escalation.html + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41356.md b/2024/CVE-2024-41356.md new file mode 100644 index 0000000000..28fe831840 --- /dev/null +++ b/2024/CVE-2024-41356.md @@ -0,0 +1,17 @@ +### [CVE-2024-41356](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41356) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via app\admin\firewall-zones\zones-edit-network.php. + +### POC + +#### Reference +- https://github.com/phpipam/phpipam/issues/4146 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41374.md b/2024/CVE-2024-41374.md new file mode 100644 index 0000000000..45d34b4bbc --- /dev/null +++ b/2024/CVE-2024-41374.md @@ -0,0 +1,17 @@ +### [CVE-2024-41374](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41374) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/settings-screen.php + +### POC + +#### Reference +- https://github.com/xjzzzxx/vulFound/blob/main/icecoder/icecoder8.1_xss2.md + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41443.md b/2024/CVE-2024-41443.md new file mode 100644 index 0000000000..5a17141f2d --- /dev/null +++ b/2024/CVE-2024-41443.md @@ -0,0 +1,22 @@ +### [CVE-2024-41443](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41443) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +A stack overflow in the function cp_dynamic() (/vendor/cute_png.h) of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file. + +### POC + +#### Reference +- https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603 +- https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/poc +- https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/poc/sample16.png +- https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/vulDescription.assets/image-20240530223831738.png +- https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/vulDescription.assets/image-20240530223921086.png +- https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/vulDescription.md + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41465.md b/2024/CVE-2024-41465.md index 735e707ce1..d770154fdf 100644 --- a/2024/CVE-2024-41465.md +++ b/2024/CVE-2024-41465.md @@ -10,7 +10,7 @@ Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow v ### POC #### Reference -No PoCs from references. +- https://github.com/iotresearch/iot-vuln/tree/main/Tenda/FH1201/setcfm #### Github - https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2024/CVE-2024-41570.md b/2024/CVE-2024-41570.md new file mode 100644 index 0000000000..a5a0d1a03b --- /dev/null +++ b/2024/CVE-2024-41570.md @@ -0,0 +1,17 @@ +### [CVE-2024-41570](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41570) +![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) + +### Description + +An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server. + +### POC + +#### Reference +- https://blog.chebuya.com/posts/server-side-request-forgery-on-havoc-c2/ + +#### Github +- https://github.com/nomi-sec/PoC-in-GitHub + diff --git a/2024/CVE-2024-41661.md b/2024/CVE-2024-41661.md new file mode 100644 index 0000000000..b9db00414e --- /dev/null +++ b/2024/CVE-2024-41661.md @@ -0,0 +1,17 @@ +### [CVE-2024-41661](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41661) +![](https://img.shields.io/static/v1?label=Product&message=rengine&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3E%3D%201.2.0%2C%20%3C%3D%202.1.1%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-78%3A%20Improper%20Neutralization%20of%20Special%20Elements%20used%20in%20an%20OS%20Command%20('OS%20Command%20Injection')&color=brighgreen) + +### Description + +reNgine is an automated reconnaissance framework for web applications. In versions 1.2.0 through 2.1.1, an authenticated command injection vulnerability in the WAF detection tool allows an authenticated attacker to remotely execute arbitrary commands as root user. The URL query parameter `url` is passed to `subprocess.check_output` without any sanitization, resulting in a command injection vulnerability. This API endpoint is accessible by authenticated users with any use role. Because the process runs as `root`, an attacker has root access. Commit edd3c85ee16f93804ad38dac5602549d2d30a93e contains a patch for the issue. + +### POC + +#### Reference +- https://github.com/yogeshojha/rengine/security/advisories/GHSA-fx7f-f735-vgh4 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41815.md b/2024/CVE-2024-41815.md new file mode 100644 index 0000000000..87adb589ca --- /dev/null +++ b/2024/CVE-2024-41815.md @@ -0,0 +1,17 @@ +### [CVE-2024-41815](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41815) +![](https://img.shields.io/static/v1?label=Product&message=starship&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3E%3D%201.0.0%2C%20%3C%201.20.0%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-77%3A%20Improper%20Neutralization%20of%20Special%20Elements%20used%20in%20a%20Command%20('Command%20Injection')&color=brighgreen) + +### Description + +Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. This issue only affects users with custom commands, so the scope is limited, and without knowledge of others' commands, it could be hard to successfully target someone. Version 1.20.0 fixes the vulnerability. + +### POC + +#### Reference +- https://github.com/starship/starship/security/advisories/GHSA-vx24-x4mv-vwr5 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41954.md b/2024/CVE-2024-41954.md new file mode 100644 index 0000000000..e48915e0cb --- /dev/null +++ b/2024/CVE-2024-41954.md @@ -0,0 +1,17 @@ +### [CVE-2024-41954](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41954) +![](https://img.shields.io/static/v1?label=Product&message=fogproject&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3C%201.5.10.41%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-732%3A%20Incorrect%20Permission%20Assignment%20for%20Critical%20Resource&color=brighgreen) + +### Description + +FOG is a cloning/imaging/rescue suite/inventory management system. The application stores plaintext service account credentials in the "/opt/fog/.fogsettings" file. This file is by default readable by all users on the host. By exploiting these credentials, a malicious user could create new accounts for the web application and much more. The vulnerability is fixed in 1.5.10.41. + +### POC + +#### Reference +- https://github.com/FOGProject/fogproject/security/advisories/GHSA-pcqm-h8cx-282c + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-41991.md b/2024/CVE-2024-41991.md index f8064d5df0..18d3eb6372 100644 --- a/2024/CVE-2024-41991.md +++ b/2024/CVE-2024-41991.md @@ -13,5 +13,6 @@ An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The ur No PoCs from references. #### Github +- https://github.com/ch4n3-yoon/ch4n3-yoon - https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2024/CVE-2024-42365.md b/2024/CVE-2024-42365.md new file mode 100644 index 0000000000..ccca4f37f6 --- /dev/null +++ b/2024/CVE-2024-42365.md @@ -0,0 +1,18 @@ +### [CVE-2024-42365](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42365) +![](https://img.shields.io/static/v1?label=Product&message=asterisk&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3C%2018.24.2%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-1220%3A%20Insufficient%20Granularity%20of%20Access%20Control&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-267%3A%20Privilege%20Defined%20With%20Unsafe%20Actions&color=brighgreen) + +### Description + +Asterisk is an open source private branch exchange (PBX) and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an AMI user with `write=originate` may change all configuration files in the `/etc/asterisk/` directory. This occurs because they are able to curl remote files and write them to disk, but are also able to append to existing files using the `FILE` function inside the `SET` application. This issue may result in privilege escalation, remote code execution and/or blind server-side request forgery with arbitrary protocol. Asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2 contain a fix for this issue. + +### POC + +#### Reference +- https://github.com/asterisk/asterisk/security/advisories/GHSA-c4cg-9275-6w44 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-42370.md b/2024/CVE-2024-42370.md new file mode 100644 index 0000000000..123f2f62e2 --- /dev/null +++ b/2024/CVE-2024-42370.md @@ -0,0 +1,17 @@ +### [CVE-2024-42370](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42370) +![](https://img.shields.io/static/v1?label=Product&message=litestar&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3C%3D%202.10.0%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-78%3A%20Improper%20Neutralization%20of%20Special%20Elements%20used%20in%20an%20OS%20Command%20('OS%20Command%20Injection')&color=brighgreen) + +### Description + +Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. In versions 2.10.0 and prior, Litestar's `docs-preview.yml` workflow is vulnerable to Environment Variable injection which may lead to secret exfiltration and repository manipulation. This issue grants a malicious actor the permission to write issues, read metadata, and write pull requests. In addition, the `DOCS_PREVIEW_DEPLOY_TOKEN` is exposed to the attacker. Commit 84d351e96aaa2a1338006d6e7221eded161f517b contains a fix for this issue. + +### POC + +#### Reference +- https://github.com/litestar-org/litestar/security/advisories/GHSA-4hq2-rpgc-r8r7 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-43167.md b/2024/CVE-2024-43167.md new file mode 100644 index 0000000000..625793a788 --- /dev/null +++ b/2024/CVE-2024-43167.md @@ -0,0 +1,24 @@ +### [CVE-2024-43167](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43167) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20Enterprise%20Linux%206&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20Enterprise%20Linux%207&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20Enterprise%20Linux%208&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20Enterprise%20Linux%209&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20OpenShift%20Container%20Platform%204&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20OpenStack%20Platform%2016.2&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20OpenStack%20Platform%2017.1&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20OpenStack%20Platform%2018.0&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=NULL%20Pointer%20Dereference&color=brighgreen) + +### Description + +A NULL pointer dereference flaw was found in the ub_ctx_set_fwd function in Unbound. This issue could allow an attacker who can invoke specific sequences of API calls to cause a segmentation fault. When certain API functions such as ub_ctx_set_fwd and ub_ctx_resolvconf are called in a particular order, the program attempts to read from a NULL pointer, leading to a crash. This issue can result in a denial of service by causing the application to terminate unexpectedly. + +### POC + +#### Reference +- https://github.com/NLnetLabs/unbound/issues/1072 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-43168.md b/2024/CVE-2024-43168.md new file mode 100644 index 0000000000..2368e60b92 --- /dev/null +++ b/2024/CVE-2024-43168.md @@ -0,0 +1,24 @@ +### [CVE-2024-43168](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43168) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20Enterprise%20Linux%206&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20Enterprise%20Linux%207&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20Enterprise%20Linux%208&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20Enterprise%20Linux%209&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20OpenShift%20Container%20Platform%204&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20OpenStack%20Platform%2016.2&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20OpenStack%20Platform%2017.1&color=blue) +![](https://img.shields.io/static/v1?label=Product&message=Red%20Hat%20OpenStack%20Platform%2018.0&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Heap-based%20Buffer%20Overflow&color=brighgreen) + +### Description + +A heap-buffer-overflow flaw was found in the cfg_mark_ports function within Unbound's config_file.c, which can lead to memory corruption. This issue could allow an attacker with local access to provide specially crafted input, potentially causing the application to crash or allowing arbitrary code execution. This could result in a denial of service or unauthorized actions on the system. + +### POC + +#### Reference +- https://github.com/NLnetLabs/unbound/issues/1039 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-4359.md b/2024/CVE-2024-4359.md new file mode 100644 index 0000000000..f6ffd5a7dc --- /dev/null +++ b/2024/CVE-2024-4359.md @@ -0,0 +1,17 @@ +### [CVE-2024-4359](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4359) +![](https://img.shields.io/static/v1?label=Product&message=Element%20Pack%20Elementor%20Addons%20(Header%20Footer%2C%20Template%20Library%2C%20Dynamic%20Grid%20%26%20Carousel%2C%20Remote%20Arrows)&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%205.7.2%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-98%20Improper%20Control%20of%20Filename%20for%20Include%2FRequire%20Statement%20in%20PHP%20Program%20('PHP%20Remote%20File%20Inclusion')&color=brighgreen) + +### Description + +The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 5.7.2 via the SVG widget and a lack of sufficient file validation in the render_svg function. This makes it possible for authenticated attackers, with contributor-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-4360.md b/2024/CVE-2024-4360.md new file mode 100644 index 0000000000..cc6937fedc --- /dev/null +++ b/2024/CVE-2024-4360.md @@ -0,0 +1,17 @@ +### [CVE-2024-4360](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4360) +![](https://img.shields.io/static/v1?label=Product&message=Element%20Pack%20Elementor%20Addons%20(Header%20Footer%2C%20Template%20Library%2C%20Dynamic%20Grid%20%26%20Carousel%2C%20Remote%20Arrows)&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%205.7.2%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-79%20Improper%20Neutralization%20of%20Input%20During%20Web%20Page%20Generation%20('Cross-site%20Scripting')&color=brighgreen) + +### Description + +The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 5.7.2 due to insufficient input sanitization and output escaping on user supplied attributes like 'title_tag'. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-4367.md b/2024/CVE-2024-4367.md index 92cee37dbb..90ac611f24 100644 --- a/2024/CVE-2024-4367.md +++ b/2024/CVE-2024-4367.md @@ -19,6 +19,7 @@ No PoCs from references. - https://github.com/GhostTroops/TOP - https://github.com/LOURC0D3/CVE-2024-4367-PoC - https://github.com/Threekiii/Awesome-POC +- https://github.com/Zombie-Kaiser/cve-2024-4367-PoC-fixed - https://github.com/avalahEE/pdfjs_disable_eval - https://github.com/clarkio/pdfjs-vuln-demo - https://github.com/google/fishy-pdf diff --git a/2024/CVE-2024-4558.md b/2024/CVE-2024-4558.md index c86eaf6a5c..703ce88479 100644 --- a/2024/CVE-2024-4558.md +++ b/2024/CVE-2024-4558.md @@ -10,7 +10,9 @@ Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remot ### POC #### Reference -No PoCs from references. +- http://seclists.org/fulldisclosure/2024/Jul/15 +- http://seclists.org/fulldisclosure/2024/Jul/16 +- http://seclists.org/fulldisclosure/2024/Jul/18 #### Github - https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/2024/CVE-2024-4577.md b/2024/CVE-2024-4577.md index 75245cf7ca..debd35b2e9 100644 --- a/2024/CVE-2024-4577.md +++ b/2024/CVE-2024-4577.md @@ -31,6 +31,7 @@ In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, w - https://github.com/K3ysTr0K3R/K3ysTr0K3R - https://github.com/Mr-xn/Penetration_Testing_POC - https://github.com/Ostorlab/KEV +- https://github.com/Sh0ckFR/CVE-2024-4577 - https://github.com/Sysc4ll3r/CVE-2024-4577 - https://github.com/TAM-K592/CVE-2024-4577 - https://github.com/Threekiii/Awesome-POC @@ -41,17 +42,21 @@ In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, w - https://github.com/XiangDongCJC/CVE-2024-4577-PHP-CGI-RCE - https://github.com/Yukiioz/CVE-2024-4577 - https://github.com/ZephrFish/CVE-2024-4577-PHP-RCE +- https://github.com/aaddmin1122345/CVE-2024-4577-POC - https://github.com/bl4cksku11/CVE-2024-4577 - https://github.com/charis3306/CVE-2024-4577 - https://github.com/dbyMelina/CVE-2024-4577 - https://github.com/enomothem/PenTestNote - https://github.com/fkie-cad/nvd-json-data-feeds +- https://github.com/fliggyaa/fscanpoc +- https://github.com/gotr00t0day/CVE-2024-4577 - https://github.com/huseyinstif/CVE-2024-4577-Nuclei-Template - https://github.com/it-t4mpan/check_cve_2024_4577.sh - https://github.com/manuelinfosec/CVE-2024-4577 - https://github.com/nitish778191/fitness_app - https://github.com/nomi-sec/PoC-in-GitHub - https://github.com/ohhhh693/CVE-2024-4577 +- https://github.com/onewinner/POCS - https://github.com/princew88/CVE-2024-4577 - https://github.com/taida957789/CVE-2024-4577 - https://github.com/tanjiti/sec_profile diff --git a/2024/CVE-2024-4898.md b/2024/CVE-2024-4898.md index 9da9406ed2..dd0ae75b7e 100644 --- a/2024/CVE-2024-4898.md +++ b/2024/CVE-2024-4898.md @@ -14,4 +14,5 @@ No PoCs from references. #### Github - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/truonghuuphuc/CVE-2024-4898-Poc diff --git a/2024/CVE-2024-4956.md b/2024/CVE-2024-4956.md index 9612903684..295bcd3d5f 100644 --- a/2024/CVE-2024-4956.md +++ b/2024/CVE-2024-4956.md @@ -32,7 +32,9 @@ No PoCs from references. - https://github.com/gmh5225/CVE-2024-4956 - https://github.com/ifconfig-me/CVE-2024-4956-Bulk-Scanner - https://github.com/ifconfig-me/Path-Traversal-Scanner +- https://github.com/k3ppf0r/2024-PocLib - https://github.com/nomi-sec/PoC-in-GitHub +- https://github.com/onewinner/POCS - https://github.com/securitycipher/daily-bugbounty-writeups - https://github.com/tanjiti/sec_profile - https://github.com/thinhap/CVE-2024-4956-PoC diff --git a/2024/CVE-2024-5159.md b/2024/CVE-2024-5159.md new file mode 100644 index 0000000000..3facc7fc76 --- /dev/null +++ b/2024/CVE-2024-5159.md @@ -0,0 +1,17 @@ +### [CVE-2024-5159](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5159) +![](https://img.shields.io/static/v1?label=Product&message=Chrome&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=125.0.6422.76%3C%20125.0.6422.76%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=Heap%20buffer%20overflow&color=brighgreen) + +### Description + +Heap buffer overflow in ANGLE in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) + +### POC + +#### Reference +- https://issues.chromium.org/issues/335613092 + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-5893.md b/2024/CVE-2024-5893.md new file mode 100644 index 0000000000..de16be07d8 --- /dev/null +++ b/2024/CVE-2024-5893.md @@ -0,0 +1,17 @@ +### [CVE-2024-5893](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5893) +![](https://img.shields.io/static/v1?label=Product&message=Cab%20Management%20System&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=%3D%201.0%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-89%20SQL%20Injection&color=brighgreen) + +### Description + +A vulnerability classified as critical has been found in SourceCodester Cab Management System 1.0. This affects an unknown part of the file /cms/classes/Users.php?f=delete_client. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-268137 was assigned to this vulnerability. + +### POC + +#### Reference +- https://github.com/Hefei-Coffee/cve/blob/main/sql9.md + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-6134.md b/2024/CVE-2024-6134.md new file mode 100644 index 0000000000..901538d2e6 --- /dev/null +++ b/2024/CVE-2024-6134.md @@ -0,0 +1,17 @@ +### [CVE-2024-6134](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6134) +![](https://img.shields.io/static/v1?label=Product&message=wp-cart-for-digital-products&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=0%3C%208.5.6%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-79%20Cross-Site%20Scripting%20(XSS)&color=brighgreen) + +### Description + +The wp-cart-for-digital-products WordPress plugin before 8.5.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin + +### POC + +#### Reference +- https://wpscan.com/vulnerability/34d61f7e-90eb-4a64-a8a7-18f2d6518118/ + +#### Github +No PoCs found on GitHub currently. + diff --git a/2024/CVE-2024-6387.md b/2024/CVE-2024-6387.md index 2ec801a7cf..c8fab8b6e5 100644 --- a/2024/CVE-2024-6387.md +++ b/2024/CVE-2024-6387.md @@ -22,6 +22,8 @@ A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). ### POC #### Reference +- http://seclists.org/fulldisclosure/2024/Jul/18 +- http://seclists.org/fulldisclosure/2024/Jul/19 - http://www.openwall.com/lists/oss-security/2024/07/03/5 - http://www.openwall.com/lists/oss-security/2024/07/28/2 - https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server diff --git a/2024/CVE-2024-6562.md b/2024/CVE-2024-6562.md new file mode 100644 index 0000000000..0f9ef6181f --- /dev/null +++ b/2024/CVE-2024-6562.md @@ -0,0 +1,17 @@ +### [CVE-2024-6562](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6562) +![](https://img.shields.io/static/v1?label=Product&message=affiliate-toolkit%20%E2%80%93%20WordPress%20Affiliate%20Plugin&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%203.5.5%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200%20Information%20Exposure&color=brighgreen) + +### Description + +The affiliate-toolkit – WordPress Affiliate Plugin plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.5.5. This is due display_errors being set to true . This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-7382.md b/2024/CVE-2024-7382.md new file mode 100644 index 0000000000..ede0b7c412 --- /dev/null +++ b/2024/CVE-2024-7382.md @@ -0,0 +1,17 @@ +### [CVE-2024-7382](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7382) +![](https://img.shields.io/static/v1?label=Product&message=Linkify%20Text&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%201.9.1%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200%20Information%20Exposure&color=brighgreen) + +### Description + +The Linkify Text plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.9.1. This is due to the plugin utilizing bootstrap and leaving test files with display_errors on. This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own and requires another vulnerability to be present for damage to an affected website. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-7410.md b/2024/CVE-2024-7410.md new file mode 100644 index 0000000000..1891f9b2f6 --- /dev/null +++ b/2024/CVE-2024-7410.md @@ -0,0 +1,17 @@ +### [CVE-2024-7410](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7410) +![](https://img.shields.io/static/v1?label=Product&message=My%20Custom%20CSS%20PHP%20%26%20ADS&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%203.3%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200%20Information%20Exposure&color=brighgreen) + +### Description + +The My Custom CSS PHP & ADS plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.3. This is due the plugin not preventing direct access to the /my-custom-css/vendor/mobiledetect/mobiledetectlib/export/exportToJSON.php file and and the file displaying/generating the full path. This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-7412.md b/2024/CVE-2024-7412.md new file mode 100644 index 0000000000..772d102b94 --- /dev/null +++ b/2024/CVE-2024-7412.md @@ -0,0 +1,17 @@ +### [CVE-2024-7412](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7412) +![](https://img.shields.io/static/v1?label=Product&message=No%20Update%20Nag&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%201.4.12%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200%20Information%20Exposure&color=brighgreen) + +### Description + +The No Update Nag plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.4.12. This is due to the plugin allowing direct access to the bootstrap.php file which has display_errors on. This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-7413.md b/2024/CVE-2024-7413.md new file mode 100644 index 0000000000..bf3e7e3ac8 --- /dev/null +++ b/2024/CVE-2024-7413.md @@ -0,0 +1,17 @@ +### [CVE-2024-7413](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7413) +![](https://img.shields.io/static/v1?label=Product&message=Obfuscate%20Email&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%203.8.1%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200%20Information%20Exposure&color=brighgreen) + +### Description + +The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.8.1. This is due to the plugin allowing direct access to the bootstrap.php file which has display_errors on. This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-7414.md b/2024/CVE-2024-7414.md new file mode 100644 index 0000000000..d93fd4f876 --- /dev/null +++ b/2024/CVE-2024-7414.md @@ -0,0 +1,17 @@ +### [CVE-2024-7414](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7414) +![](https://img.shields.io/static/v1?label=Product&message=PDF%20Builder%20for%20WPForms&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%201.2.116%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200%20Information%20Exposure&color=brighgreen) + +### Description + +The PDF Builder for WPForms plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.2.116. This is due to the plugin allowing direct access to the composer-setup.php file which has display_errors on. This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-7416.md b/2024/CVE-2024-7416.md new file mode 100644 index 0000000000..eaea60b552 --- /dev/null +++ b/2024/CVE-2024-7416.md @@ -0,0 +1,17 @@ +### [CVE-2024-7416](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7416) +![](https://img.shields.io/static/v1?label=Product&message=Reveal%20Template&color=blue) +![](https://img.shields.io/static/v1?label=Version&message=*%3C%3D%203.7%20&color=brighgreen) +![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-200%20Information%20Exposure&color=brighgreen) + +### Description + +The Reveal Template plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.7. This is due to the plugin allowing direct access to the bootstrap.php file which has display_errors on. This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website. + +### POC + +#### Reference +No PoCs from references. + +#### Github +- https://github.com/20142995/nuclei-templates + diff --git a/2024/CVE-2024-7437.md b/2024/CVE-2024-7437.md index 3159524a3e..ea2d6c3d49 100644 --- a/2024/CVE-2024-7437.md +++ b/2024/CVE-2024-7437.md @@ -5,7 +5,7 @@ ### Description -A vulnerability, which was classified as critical, was found in SimpleMachines SMF 2.1.4. Affected is an unknown function of the file /index.php?action=profile;u=2;area=showalerts;do=remove of the component Delete User Handler. The manipulation of the argument aid leads to improper control of resource identifiers. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-273522 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. +A vulnerability, which was classified as critical, was found in SimpleMachines SMF 2.1.4. Affected is an unknown function of the file /index.php?action=profile;u=2;area=showalerts;do=remove of the component Delete User Handler. The manipulation of the argument aid leads to improper control of resource identifiers. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. ### POC diff --git a/2024/CVE-2024-7438.md b/2024/CVE-2024-7438.md index 388a6a4a85..cf61d69146 100644 --- a/2024/CVE-2024-7438.md +++ b/2024/CVE-2024-7438.md @@ -5,7 +5,7 @@ ### Description -A vulnerability has been found in SimpleMachines SMF 2.1.4 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php?action=profile;u=2;area=showalerts;do=read of the component User Alert Read Status Handler. The manipulation of the argument aid leads to improper control of resource identifiers. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-273523. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. +A vulnerability has been found in SimpleMachines SMF 2.1.4 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php?action=profile;u=2;area=showalerts;do=read of the component User Alert Read Status Handler. The manipulation of the argument aid leads to improper control of resource identifiers. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. ### POC diff --git a/github.txt b/github.txt index 8cf5181e17..d8c5e095ef 100644 --- a/github.txt +++ b/github.txt @@ -8785,6 +8785,7 @@ CVE-2012-2982 - https://github.com/Will-Banksy/My-Exploits CVE-2012-2982 - https://github.com/alien-keric/webmin-v1.580-exploit CVE-2012-2982 - https://github.com/blu3ming/CVE-2012-2982 CVE-2012-2982 - https://github.com/cd6629/CVE-2012-2982-Python-PoC +CVE-2012-2982 - https://github.com/elliotosama/CVE-2012-2982 CVE-2012-2982 - https://github.com/kirilla/python CVE-2012-2982 - https://github.com/tera-si/PoC-scripts-in-GO CVE-2012-2982 - https://github.com/wizardy0ga/CVE_2012-2982 @@ -21524,6 +21525,7 @@ CVE-2016-1000148 - https://github.com/ARPSyndicate/kenzer-templates CVE-2016-1000149 - https://github.com/ARPSyndicate/cvemon CVE-2016-1000149 - https://github.com/ARPSyndicate/kenzer-templates CVE-2016-1000152 - https://github.com/ARPSyndicate/kenzer-templates +CVE-2016-1000153 - https://github.com/20142995/nuclei-templates CVE-2016-1000153 - https://github.com/ARPSyndicate/cvemon CVE-2016-1000153 - https://github.com/ARPSyndicate/kenzer-templates CVE-2016-1000154 - https://github.com/ARPSyndicate/kenzer-templates @@ -36263,6 +36265,7 @@ CVE-2017-17558 - https://github.com/ARPSyndicate/cvemon CVE-2017-17561 - https://github.com/WangYihang/Exploit-Framework CVE-2017-17562 - https://github.com/1337g/CVE-2017-17562 CVE-2017-17562 - https://github.com/20142995/Goby +CVE-2017-17562 - https://github.com/20142995/nuclei-templates CVE-2017-17562 - https://github.com/20142995/sectool CVE-2017-17562 - https://github.com/ARPSyndicate/cvemon CVE-2017-17562 - https://github.com/ARPSyndicate/kenzer-templates @@ -60994,6 +60997,7 @@ CVE-2019-11358 - https://github.com/ClashOfCoders/UltimateGoal-2020-2021 CVE-2019-11358 - https://github.com/ClaudiaDavis/DragonSlayers2022-2023Code CVE-2019-11358 - https://github.com/Clayton-Toste/ScotboticsFreightFrenzy CVE-2019-11358 - https://github.com/CloudCodesStuff/ftc-2022-2023 +CVE-2019-11358 - https://github.com/Clueless120/4780FTC_MAIN CVE-2019-11358 - https://github.com/CoderOnen/FTCode CVE-2019-11358 - https://github.com/ColeDrucker/FTC-Code-Cole CVE-2019-11358 - https://github.com/ColemanDuPlessie/FTC-SDG-Center-Stage @@ -61802,6 +61806,7 @@ CVE-2019-11358 - https://github.com/Juyoung0701/FtcRobotController-master CVE-2019-11358 - https://github.com/KChugh2903/ftc-2021 CVE-2019-11358 - https://github.com/KEMS-KASS-FTC/CenterStage CVE-2019-11358 - https://github.com/KEMS-KASS-FTC/Powerplay +CVE-2019-11358 - https://github.com/KKAY99/FTC-Technobotics CVE-2019-11358 - https://github.com/KSSONE/centerstage CVE-2019-11358 - https://github.com/KTT24/CreamedPeasCode CVE-2019-11358 - https://github.com/KUDOS-15229/Centerstage2023 @@ -62236,6 +62241,7 @@ CVE-2019-11358 - https://github.com/Perfect-Paradox-Team-8400/8400_2022 CVE-2019-11358 - https://github.com/Perfect-Paradox-Team-8400/8400_2023 CVE-2019-11358 - https://github.com/Petelax/16413-FreightFrenzy CVE-2019-11358 - https://github.com/Petelax/FTC16413-CenterStage +CVE-2019-11358 - https://github.com/Petelax/FTC16413-IntoTheDeep CVE-2019-11358 - https://github.com/Petelax/FTC16413-PowerPlay CVE-2019-11358 - https://github.com/Peter-Dong1/KHS-Robotics-2223-FTC- CVE-2019-11358 - https://github.com/PeterWetherell/OffSeasonTemplate @@ -68313,7 +68319,11 @@ CVE-2019-15813 - https://github.com/hectorgie/PoC-in-GitHub CVE-2019-15813 - https://github.com/wolf1892/CVE-2019-15813 CVE-2019-15819 - https://github.com/ARPSyndicate/cvemon CVE-2019-15822 - https://github.com/ARPSyndicate/cvemon +CVE-2019-15823 - https://github.com/whattheslime/wps-show-login CVE-2019-15824 - https://github.com/ARPSyndicate/cvemon +CVE-2019-15824 - https://github.com/whattheslime/wps-show-login +CVE-2019-15825 - https://github.com/whattheslime/wps-show-login +CVE-2019-15826 - https://github.com/whattheslime/wps-show-login CVE-2019-15827 - https://github.com/ARPSyndicate/cvemon CVE-2019-15834 - https://github.com/ARPSyndicate/cvemon CVE-2019-15845 - https://github.com/ARPSyndicate/cvemon @@ -87088,6 +87098,7 @@ CVE-2020-22209 - https://github.com/ARPSyndicate/kenzer-templates CVE-2020-2221 - https://github.com/ARPSyndicate/cvemon CVE-2020-22210 - https://github.com/ARPSyndicate/kenzer-templates CVE-2020-22211 - https://github.com/ARPSyndicate/kenzer-templates +CVE-2020-2225 - https://github.com/timothee-chauvin/eyeballvul CVE-2020-22277 - https://github.com/ARPSyndicate/cvemon CVE-2020-22284 - https://github.com/ARPSyndicate/cvemon CVE-2020-2229 - https://github.com/EdgeSecurityTeam/Vulnerability @@ -102596,6 +102607,7 @@ CVE-2021-24917 - https://github.com/ARPSyndicate/kenzer-templates CVE-2021-24917 - https://github.com/Whiteh4tWolf/pentest CVE-2021-24917 - https://github.com/dikalasenjadatang/CVE-2021-24917 CVE-2021-24917 - https://github.com/soxoj/information-disclosure-writeups-and-pocs +CVE-2021-24917 - https://github.com/whattheslime/wps-show-login CVE-2021-24923 - https://github.com/ARPSyndicate/cvemon CVE-2021-24926 - https://github.com/ARPSyndicate/cvemon CVE-2021-24926 - https://github.com/ARPSyndicate/kenzer-templates @@ -110126,6 +110138,7 @@ CVE-2021-3493 - https://github.com/AmIAHuman/OverlayFS-CVE-2021-3493 CVE-2021-3493 - https://github.com/Anekant-Singhai/Exploits CVE-2021-3493 - https://github.com/ArrestX/--POC CVE-2021-3493 - https://github.com/Awrrays/Pentest-Tips +CVE-2021-3493 - https://github.com/BEPb/tryhackme CVE-2021-3493 - https://github.com/CVEDB/PoC-List CVE-2021-3493 - https://github.com/CVEDB/awesome-cve-repo CVE-2021-3493 - https://github.com/CVEDB/top @@ -110556,6 +110569,7 @@ CVE-2021-3560 - https://github.com/Almorabea/Polkit-exploit CVE-2021-3560 - https://github.com/AnastasiaLomova/PR1 CVE-2021-3560 - https://github.com/AnastasiaLomova/PR1.1 CVE-2021-3560 - https://github.com/AssassinUKG/Polkit-CVE-2021-3560 +CVE-2021-3560 - https://github.com/BEPb/tryhackme CVE-2021-3560 - https://github.com/BigMike-Champ/Capstone CVE-2021-3560 - https://github.com/BizarreLove/CVE-2021-3560 CVE-2021-3560 - https://github.com/CharonDefalt/linux-exploit @@ -110892,8 +110906,10 @@ CVE-2021-36260 - https://github.com/Aiminsun/CVE-2021-36260 CVE-2021-36260 - https://github.com/ArrestX/--POC CVE-2021-36260 - https://github.com/Awrrays/FrameVul CVE-2021-36260 - https://github.com/CVEDB/awesome-cve-repo +CVE-2021-36260 - https://github.com/CVEDB/top CVE-2021-36260 - https://github.com/Cuerz/CVE-2021-36260 CVE-2021-36260 - https://github.com/Fans0n-Fan/Awesome-IoT-exp +CVE-2021-36260 - https://github.com/GhostTroops/TOP CVE-2021-36260 - https://github.com/Haoke98/NetEye CVE-2021-36260 - https://github.com/HimmelAward/Goby_POC CVE-2021-36260 - https://github.com/KayCHENvip/vulnerability-poc @@ -112874,6 +112890,7 @@ CVE-2021-4034 - https://github.com/AvakyanAlexander/Number7 CVE-2021-4034 - https://github.com/AvakyanAlexander/Number7.1 CVE-2021-4034 - https://github.com/Awrrays/Pentest-Tips CVE-2021-4034 - https://github.com/Ayrx/CVE-2021-4034 +CVE-2021-4034 - https://github.com/BEPb/tryhackme CVE-2021-4034 - https://github.com/BachoSeven/stellestelline CVE-2021-4034 - https://github.com/BastG57/Random CVE-2021-4034 - https://github.com/BryptoBlood/Cyber-Security-University @@ -114706,6 +114723,7 @@ CVE-2021-41773 - https://github.com/AnonymouID/POC CVE-2021-41773 - https://github.com/ArrestX/--POC CVE-2021-41773 - https://github.com/AssassinUKG/CVE-2021-41773 CVE-2021-41773 - https://github.com/Awrrays/FrameVul +CVE-2021-41773 - https://github.com/BEPb/tryhackme CVE-2021-41773 - https://github.com/BabyTeam1024/CVE-2021-41773 CVE-2021-41773 - https://github.com/Balgogan/CVE-2021-41773 CVE-2021-41773 - https://github.com/BlueTeamSteve/CVE-2021-41773 @@ -121627,6 +121645,7 @@ CVE-2022-0847 - https://github.com/ArrestX/--POC CVE-2022-0847 - https://github.com/Asbatel/CBDS_CVE-2022-0847_POC CVE-2022-0847 - https://github.com/Awrrays/Pentest-Tips CVE-2022-0847 - https://github.com/AyoubNajim/cve-2022-0847dirtypipe-exploit +CVE-2022-0847 - https://github.com/BEPb/tryhackme CVE-2022-0847 - https://github.com/BlessedRebuS/OSCP-Pentesting-Cheatsheet CVE-2022-0847 - https://github.com/BlizzardEternity/CVE-2022-0847 CVE-2022-0847 - https://github.com/BlizzardEternity/DirtyPipe-Android @@ -126290,6 +126309,7 @@ CVE-2022-22965 - https://github.com/AabyssZG/SpringBoot-Scan CVE-2022-22965 - https://github.com/Axx8/SpringFramework_CVE-2022-22965_RCE CVE-2022-22965 - https://github.com/BBD-YZZ/GUI-TOOLS CVE-2022-22965 - https://github.com/BC-SECURITY/Moriarty +CVE-2022-22965 - https://github.com/BEPb/tryhackme CVE-2022-22965 - https://github.com/BKLockly/CVE-2022-22965 CVE-2022-22965 - https://github.com/Bl0omZ/JAVAExploitStudy CVE-2022-22965 - https://github.com/BobTheShoplifter/Spring4Shell-POC @@ -131571,6 +131591,7 @@ CVE-2022-27664 - https://github.com/ruzickap/malware-cryptominer-container CVE-2022-27664 - https://github.com/upsideon/shoveler CVE-2022-27665 - https://github.com/dievus/CVE-2022-27665 CVE-2022-27665 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2022-27666 - https://github.com/0xMarcio/cve CVE-2022-27666 - https://github.com/20142995/sectool CVE-2022-27666 - https://github.com/ARPSyndicate/cvemon CVE-2022-27666 - https://github.com/Albocoder/cve-2022-27666-exploits @@ -143083,6 +143104,7 @@ CVE-2023-1389 - https://github.com/Ostorlab/KEV CVE-2023-1389 - https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors CVE-2023-1389 - https://github.com/Terminal1337/CVE-2023-1389 CVE-2023-1389 - https://github.com/Voyag3r-Security/CVE-2023-1389 +CVE-2023-1389 - https://github.com/ahisec/nuclei-tps CVE-2023-1389 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-1389 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-1389 - https://github.com/timb-machine/linux-malware @@ -144564,6 +144586,7 @@ CVE-2023-22527 - https://github.com/farukokutan/Threat-Intelligence-Research-Rep CVE-2023-22527 - https://github.com/ga0we1/CVE-2023-22527_Confluence_RCE CVE-2023-22527 - https://github.com/gobysec/Goby CVE-2023-22527 - https://github.com/jarrodcoulter/jankyjred-cyphercon +CVE-2023-22527 - https://github.com/k3ppf0r/2024-PocLib CVE-2023-22527 - https://github.com/lions2012/Penetration_Testing_POC CVE-2023-22527 - https://github.com/netlas-io/netlas-dorks CVE-2023-22527 - https://github.com/nomi-sec/PoC-in-GitHub @@ -144760,6 +144783,7 @@ CVE-2023-23054 - https://github.com/Marsman1996/pocs CVE-2023-23080 - https://github.com/ARPSyndicate/cvemon CVE-2023-23080 - https://github.com/fxc233/iot-vul CVE-2023-2309 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2023-23108 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-23126 - https://github.com/ARPSyndicate/cvemon CVE-2023-23126 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-23126 - https://github.com/l00neyhacker/CVE-2023-23126 @@ -145707,6 +145731,7 @@ CVE-2023-25221 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-2523 - https://github.com/Any3ite/CVE-2023-2523 CVE-2023-2523 - https://github.com/Co5mos/nuclei-tps CVE-2023-2523 - https://github.com/TrojanAZhen/Self_Back +CVE-2023-2523 - https://github.com/ahisec/nuclei-tps CVE-2023-2523 - https://github.com/bingtangbanli/cve-2023-2523-and-cve-2023-2648 CVE-2023-2523 - https://github.com/d4n-sec/d4n-sec.github.io CVE-2023-2523 - https://github.com/kuang-zy/2023-Weaver-pocs @@ -145998,6 +146023,7 @@ CVE-2023-26158 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-26159 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-26159 - https://github.com/seal-community/patches CVE-2023-26159 - https://github.com/zvigrinberg/exhort-service-readiness-experiment +CVE-2023-2617 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-26213 - https://github.com/ARPSyndicate/cvemon CVE-2023-26236 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-26237 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -146155,6 +146181,7 @@ CVE-2023-2648 - https://github.com/Co5mos/nuclei-tps CVE-2023-2648 - https://github.com/MD-SEC/MDPOCS CVE-2023-2648 - https://github.com/MzzdToT/HAC_Bored_Writing CVE-2023-2648 - https://github.com/TrojanAZhen/Self_Back +CVE-2023-2648 - https://github.com/ahisec/nuclei-tps CVE-2023-2648 - https://github.com/bingtangbanli/cve-2023-2523-and-cve-2023-2648 CVE-2023-2648 - https://github.com/d4n-sec/d4n-sec.github.io CVE-2023-2648 - https://github.com/kuang-zy/2023-Weaver-pocs @@ -146263,6 +146290,7 @@ CVE-2023-26852 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-26866 - https://github.com/lionelmusonza/CVE-2023-26866 CVE-2023-26866 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-26913 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2023-26917 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-26920 - https://github.com/CumulusDS/github-vulnerable-repos CVE-2023-26920 - https://github.com/seal-community/patches CVE-2023-26921 - https://github.com/ARPSyndicate/cvemon @@ -147377,6 +147405,7 @@ CVE-2023-29360 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-29360 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-29374 - https://github.com/cckuailong/awesome-gpt-security CVE-2023-29374 - https://github.com/corca-ai/awesome-llm-security +CVE-2023-29374 - https://github.com/invariantlabs-ai/invariant CVE-2023-29374 - https://github.com/zgimszhd61/llm-security-quickstart CVE-2023-29383 - https://github.com/GrigGM/05-virt-04-docker-hw CVE-2023-29383 - https://github.com/adegoodyer/kubernetes-admin-toolkit @@ -147592,6 +147621,8 @@ CVE-2023-29930 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-29983 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-29983 - https://github.com/zPrototype/CVE-2023-29983 CVE-2023-29986 - https://github.com/davidfortytwo/SpringBootChecker +CVE-2023-29995 - https://github.com/DiRaltvein/memory-corruption-examples +CVE-2023-29996 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-3001 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-30013 - https://github.com/h00die-gr3y/Metasploit CVE-2023-30019 - https://github.com/j4k0m/godkiller @@ -148191,6 +148222,7 @@ CVE-2023-32282 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-32292 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-32296 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-32306 - https://github.com/indevi0us/indevi0us +CVE-2023-32307 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-32307 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-32308 - https://github.com/indevi0us/indevi0us CVE-2023-32309 - https://github.com/MaxymVlasov/renovate-vuln-alerts @@ -148339,6 +148371,7 @@ CVE-2023-32513 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-32516 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-3254 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-32546 - https://github.com/kohnakagawa/kohnakagawa +CVE-2023-32546 - https://github.com/ripeda/Lectricus CVE-2023-32559 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-32560 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-32560 - https://github.com/x0rb3l/CVE-2023-32560 @@ -148491,6 +148524,7 @@ CVE-2023-32784 - https://github.com/und3sc0n0c1d0/BruteForce-to-KeePass CVE-2023-32784 - https://github.com/vdohney/keepass-password-dumper CVE-2023-32784 - https://github.com/ynuwenhof/keedump CVE-2023-32784 - https://github.com/z-jxy/keepass_dump +CVE-2023-32786 - https://github.com/invariantlabs-ai/invariant CVE-2023-32787 - https://github.com/claroty/opcua-exploit-framework CVE-2023-32787 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-32790 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -148792,6 +148826,8 @@ CVE-2023-33617 - https://github.com/hheeyywweellccoommee/CVE-2023-33617-hugnc CVE-2023-33617 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-33617 - https://github.com/tucommenceapousser/CVE-2023-33617 CVE-2023-33629 - https://github.com/20142995/sectool +CVE-2023-33659 - https://github.com/DiRaltvein/memory-corruption-examples +CVE-2023-33660 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-33664 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-33668 - https://github.com/lodi-g/CVE-2023-33668 CVE-2023-33668 - https://github.com/nomi-sec/PoC-in-GitHub @@ -149707,6 +149743,7 @@ CVE-2023-3618 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-3618 - https://github.com/jgamblin/cvelint-action CVE-2023-3618 - https://github.com/khulnasoft-lab/cvelint-action CVE-2023-3618 - https://github.com/mprpic/cvelint +CVE-2023-36189 - https://github.com/invariantlabs-ai/invariant CVE-2023-36192 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-36193 - https://github.com/DiRaltvein/memory-corruption-examples CVE-2023-36210 - https://github.com/capture0x/My-CVE @@ -150072,6 +150109,7 @@ CVE-2023-3711 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-3711 - https://github.com/vpxuser/CVE-2023-3711-POC CVE-2023-3712 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-3712 - https://github.com/vpxuser/CVE-2023-3712-POC +CVE-2023-37144 - https://github.com/pwn2ooown/2024-NCKUCTF-Pwn-Course CVE-2023-37153 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-3716 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-37164 - https://github.com/capture0x/My-CVE @@ -151781,6 +151819,7 @@ CVE-2023-4166 - https://github.com/MzzdToT/HAC_Bored_Writing CVE-2023-4166 - https://github.com/TrojanAZhen/Self_Back CVE-2023-4166 - https://github.com/Ultramanzhang/obsfir CVE-2023-4166 - https://github.com/ZUEB-CybersecurityGroup/obsfir +CVE-2023-4166 - https://github.com/ahisec/nuclei-tps CVE-2023-4166 - https://github.com/d4n-sec/d4n-sec.github.io CVE-2023-4166 - https://github.com/ggjkjk/1444 CVE-2023-4166 - https://github.com/ibaiw/2023Hvv @@ -154472,6 +154511,7 @@ CVE-2023-49438 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-49440 - https://github.com/NyaMeeEain/Reserve_Boolean-based-SQL-injection CVE-2023-49442 - https://github.com/Co5mos/nuclei-tps CVE-2023-49442 - https://github.com/Threekiii/Awesome-POC +CVE-2023-49442 - https://github.com/ahisec/nuclei-tps CVE-2023-49442 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-49442 - https://github.com/tanjiti/sec_profile CVE-2023-49453 - https://github.com/nitipoom-jar/CVE-2023-49453 @@ -154574,6 +154614,7 @@ CVE-2023-49777 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-49779 - https://github.com/mute1008/mute1008 CVE-2023-49779 - https://github.com/mute1997/mute1997 CVE-2023-49785 - https://github.com/XRSec/AWVS-Update +CVE-2023-49785 - https://github.com/k3ppf0r/2024-PocLib CVE-2023-49785 - https://github.com/nvn1729/advisories CVE-2023-49785 - https://github.com/seyrenus/trace-release CVE-2023-49785 - https://github.com/tanjiti/sec_profile @@ -154748,6 +154789,7 @@ CVE-2023-50290 - https://github.com/wy876/wiki CVE-2023-50290 - https://github.com/xingchennb/POC- CVE-2023-50291 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-50292 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2023-50292 - https://github.com/k3ppf0r/2024-PocLib CVE-2023-50294 - https://github.com/a-zara-n/a-zara-n CVE-2023-50298 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-50303 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -154778,6 +154820,7 @@ CVE-2023-50376 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-50378 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-50380 - https://github.com/tanjiti/sec_profile CVE-2023-50386 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2023-50386 - https://github.com/k3ppf0r/2024-PocLib CVE-2023-50386 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2023-50386 - https://github.com/tanjiti/sec_profile CVE-2023-50386 - https://github.com/vvmdx/Apache-Solr-RCE_CVE-2023-50386_POC @@ -155557,6 +155600,7 @@ CVE-2023-5335 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-5339 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-5341 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-5344 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2023-5345 - https://github.com/Lotuhu/Page-UAF CVE-2023-5345 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-5345 - https://github.com/shakyaraj9569/Documentation CVE-2023-5350 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -156284,6 +156328,7 @@ CVE-2023-7028 - https://github.com/hackeremmen/gitlab-exploit CVE-2023-7028 - https://github.com/izj007/wechat CVE-2023-7028 - https://github.com/johe123qwe/github-trending CVE-2023-7028 - https://github.com/josephalan42/CTFs-Infosec-Witeups +CVE-2023-7028 - https://github.com/k3ppf0r/2024-PocLib CVE-2023-7028 - https://github.com/lions2012/Penetration_Testing_POC CVE-2023-7028 - https://github.com/mochammadrafi/CVE-2023-7028 CVE-2023-7028 - https://github.com/nomi-sec/PoC-in-GitHub @@ -156399,6 +156444,7 @@ CVE-2023-7184 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-7185 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-7192 - https://github.com/NaInSec/CVE-LIST CVE-2023-7192 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2023-7201 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2023-7207 - https://github.com/fokypoky/places-list CVE-2023-7208 - https://github.com/Knighthana/YABWF CVE-2023-7208 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -161496,6 +161542,7 @@ CVE-2024-0750 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0751 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0753 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0755 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-0757 - https://github.com/hunThubSpace/CVE-2024-0757-Exploit CVE-2024-0757 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-0759 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0765 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -161540,6 +161587,7 @@ CVE-2024-0858 - https://github.com/NaInSec/CVE-LIST CVE-2024-0864 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0866 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0866 - https://github.com/tanjiti/sec_profile +CVE-2024-0868 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0874 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0881 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-0882 - https://github.com/tanjiti/sec_profile @@ -161948,6 +161996,7 @@ CVE-2024-1559 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-1561 - https://github.com/DiabloHTB/CVE-2024-1561 CVE-2024-1561 - https://github.com/DiabloHTB/Nuclei-Template-CVE-2024-1561 CVE-2024-1561 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-1561 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-1561 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-1561 - https://github.com/tanjiti/sec_profile CVE-2024-1561 - https://github.com/wjlin0/poc-doc @@ -162050,6 +162099,7 @@ CVE-2024-1709 - https://github.com/W01fh4cker/ScreenConnect-AuthBypass-RCE CVE-2024-1709 - https://github.com/cjybao/CVE-2024-1709-and-CVE-2024-1708 CVE-2024-1709 - https://github.com/codeb0ss/CVE-2024-1709-PoC CVE-2024-1709 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-1709 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-1709 - https://github.com/myseq/vcheck-cli CVE-2024-1709 - https://github.com/nitish778191/fitness_app CVE-2024-1709 - https://github.com/nomi-sec/PoC-in-GitHub @@ -162571,6 +162621,7 @@ CVE-2024-20931 - https://github.com/fireinrain/github-trending CVE-2024-20931 - https://github.com/gobysec/Goby CVE-2024-20931 - https://github.com/jafshare/GithubTrending CVE-2024-20931 - https://github.com/johe123qwe/github-trending +CVE-2024-20931 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-20931 - https://github.com/labesterOct/CVE-2024-20931 CVE-2024-20931 - https://github.com/netlas-io/netlas-dorks CVE-2024-20931 - https://github.com/nomi-sec/PoC-in-GitHub @@ -162717,6 +162768,7 @@ CVE-2024-21338 - https://github.com/hakaioffsec/CVE-2024-21338 CVE-2024-21338 - https://github.com/johe123qwe/github-trending CVE-2024-21338 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-21338 - https://github.com/tanjiti/sec_profile +CVE-2024-21338 - https://github.com/tykawaii98/CVE-2024-21338_PoC CVE-2024-21338 - https://github.com/varwara/CVE-2024-21338 CVE-2024-2134 - https://github.com/Srivishnu-p/CVEs-and-Vulnerabilities CVE-2024-2134 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -162795,6 +162847,7 @@ CVE-2024-21412 - https://github.com/lsr00ter/CVE-2024-21412_Water-Hydra CVE-2024-21412 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-21412 - https://github.com/wr00t/CVE-2024-21412_Water-Hydra CVE-2024-21413 - https://github.com/0xMarcio/cve +CVE-2024-21413 - https://github.com/BEPb/tryhackme CVE-2024-21413 - https://github.com/CMNatic/CVE-2024-21413 CVE-2024-21413 - https://github.com/DevAkabari/CVE-2024-21413 CVE-2024-21413 - https://github.com/GhostTroops/TOP @@ -162919,6 +162972,7 @@ CVE-2024-21511 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-21512 - https://github.com/wjlin0/poc-doc CVE-2024-21512 - https://github.com/wy876/POC CVE-2024-21512 - https://github.com/wy876/wiki +CVE-2024-21514 - https://github.com/bigb0x/CVE-2024-21514 CVE-2024-21514 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-2152 - https://github.com/RNBBarrett/CrewAI-examples CVE-2024-21520 - https://github.com/ch4n3-yoon/ch4n3-yoon @@ -163096,6 +163150,7 @@ CVE-2024-21762 - https://github.com/f1tao/awesome-iot-security-resource CVE-2024-21762 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-21762 - https://github.com/greandfather/CVE-2024-20291-POC CVE-2024-21762 - https://github.com/h4x0r-dz/CVE-2024-21762 +CVE-2024-21762 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-21762 - https://github.com/lolminerxmrig/multicheck_CVE-2024-21762 CVE-2024-21762 - https://github.com/lore-is-already-taken/multicheck_CVE-2024-21762 CVE-2024-21762 - https://github.com/nomi-sec/PoC-in-GitHub @@ -163197,6 +163252,7 @@ CVE-2024-21893 - https://github.com/farukokutan/Threat-Intelligence-Research-Rep CVE-2024-21893 - https://github.com/gobysec/Goby CVE-2024-21893 - https://github.com/h4x0r-dz/CVE-2024-21893.py CVE-2024-21893 - https://github.com/inguardians/ivanti-VPN-issues-2024-research +CVE-2024-21893 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-21893 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-21893 - https://github.com/seajaysec/Ivanti-Connect-Around-Scan CVE-2024-21893 - https://github.com/tanjiti/sec_profile @@ -163877,6 +163933,7 @@ CVE-2024-23334 - https://github.com/brian-edgar-re/poc-cve-2024-23334 CVE-2024-23334 - https://github.com/ggPonchik/Tinkoff-CTF-2024-lohness CVE-2024-23334 - https://github.com/ibaiw/2024Hvv CVE-2024-23334 - https://github.com/jhonnybonny/CVE-2024-23334 +CVE-2024-23334 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-23334 - https://github.com/marl-ot/DevSecOps-2024 CVE-2024-23334 - https://github.com/netlas-io/netlas-dorks CVE-2024-23334 - https://github.com/nomi-sec/PoC-in-GitHub @@ -163974,12 +164031,16 @@ CVE-2024-23673 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-23689 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2369 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2369 - https://github.com/tanjiti/sec_profile +CVE-2024-23692 - https://github.com/0x20c/CVE-2024-23692-EXP CVE-2024-23692 - https://github.com/Ostorlab/KEV CVE-2024-23692 - https://github.com/Threekiii/CVE CVE-2024-23692 - https://github.com/TrojanAZhen/Self_Back CVE-2024-23692 - https://github.com/enomothem/PenTestNote +CVE-2024-23692 - https://github.com/jakabakos/CVE-2024-23692-RCE-in-Rejetto-HFS CVE-2024-23692 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-23692 - https://github.com/onewinner/POCS CVE-2024-23692 - https://github.com/tanjiti/sec_profile +CVE-2024-23692 - https://github.com/vanboomqi/CVE-2024-23692 CVE-2024-23692 - https://github.com/wjlin0/poc-doc CVE-2024-23692 - https://github.com/wy876/POC CVE-2024-2370 - https://github.com/NaInSec/CVE-LIST @@ -164208,6 +164269,7 @@ CVE-2024-23897 - https://github.com/jafshare/GithubTrending CVE-2024-23897 - https://github.com/jenkinsci-cert/SECURITY-3314-3315 CVE-2024-23897 - https://github.com/johe123qwe/github-trending CVE-2024-23897 - https://github.com/jopraveen/CVE-2024-23897 +CVE-2024-23897 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-23897 - https://github.com/kaanatmacaa/CVE-2024-23897 CVE-2024-23897 - https://github.com/lions2012/Penetration_Testing_POC CVE-2024-23897 - https://github.com/mil4ne/CVE-2024-23897-Jenkins-4.441 @@ -164245,6 +164307,7 @@ CVE-2024-23910 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-23917 - https://github.com/Ostorlab/KEV CVE-2024-23917 - https://github.com/Y4tacker/JavaSec CVE-2024-23917 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-23917 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-2392 - https://github.com/NaInSec/CVE-LIST CVE-2024-2392 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2393 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -164503,6 +164566,8 @@ CVE-2024-24577 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-24578 - https://github.com/NaInSec/CVE-LIST CVE-2024-24579 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2459 - https://github.com/NaInSec/CVE-LIST +CVE-2024-24590 - https://github.com/OxyDeV2/ClearML-CVE-2024-24590 +CVE-2024-24590 - https://github.com/diegogarciayala/CVE-2024-24590-ClearML-RCE-CMD-POC CVE-2024-24590 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-24590 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-24591 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -164544,6 +164609,7 @@ CVE-2024-24720 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-24722 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-24725 - https://github.com/NaInSec/CVE-LIST CVE-2024-24725 - https://github.com/tanjiti/sec_profile +CVE-2024-2473 - https://github.com/whattheslime/wps-show-login CVE-2024-24739 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2474 - https://github.com/NaInSec/CVE-LIST CVE-2024-24740 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -164756,6 +164822,7 @@ CVE-2024-2496 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2497 - https://github.com/NaInSec/CVE-LIST CVE-2024-2497 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-24988 - https://github.com/c0rydoras/cves +CVE-2024-249973 - https://github.com/RevoltSecurities/CVE-2024-29973 CVE-2024-2500 - https://github.com/NaInSec/CVE-LIST CVE-2024-2500 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-25002 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -165118,6 +165185,7 @@ CVE-2024-25600 - https://github.com/hy011121/CVE-2024-25600-wordpress-Exploit-RC CVE-2024-25600 - https://github.com/ivanbg2004/0BL1V10N-CVE-2024-25600-Bricks-Builder-plugin-for-WordPress CVE-2024-25600 - https://github.com/johe123qwe/github-trending CVE-2024-25600 - https://github.com/k3lpi3b4nsh33/CVE-2024-25600 +CVE-2024-25600 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-25600 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-25600 - https://github.com/peiqiF4ck/WebFrameworkTools-5.1-main CVE-2024-25600 - https://github.com/sampsonv/github-trending @@ -165526,7 +165594,10 @@ CVE-2024-26229 - https://github.com/gmh5225/awesome-game-security CVE-2024-26229 - https://github.com/michredteam/PoC-26229 CVE-2024-26229 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-26229 - https://github.com/tanjiti/sec_profile +CVE-2024-26229 - https://github.com/team-MineDEV/CVE-2024-26229 CVE-2024-26229 - https://github.com/varwara/CVE-2024-26229 +CVE-2024-26230 - https://github.com/kiwids0220/CVE-2024-26230 +CVE-2024-26230 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-26246 - https://github.com/NaInSec/CVE-LIST CVE-2024-26247 - https://github.com/NaInSec/CVE-LIST CVE-2024-26247 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -165959,6 +166030,7 @@ CVE-2024-27198 - https://github.com/hcy-picus/emerging_threat_simulator CVE-2024-27198 - https://github.com/jafshare/GithubTrending CVE-2024-27198 - https://github.com/johe123qwe/github-trending CVE-2024-27198 - https://github.com/juev/links +CVE-2024-27198 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-27198 - https://github.com/labesterOct/CVE-2024-27198 CVE-2024-27198 - https://github.com/marl-ot/DevSecOps-2024 CVE-2024-27198 - https://github.com/netlas-io/netlas-dorks @@ -166097,6 +166169,7 @@ CVE-2024-27347 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-27348 - https://github.com/Ostorlab/KEV CVE-2024-27348 - https://github.com/Zeyad-Azima/CVE-2024-27348 CVE-2024-27348 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-27348 - https://github.com/jakabakos/CVE-2024-27348-Apache-HugeGraph-RCE CVE-2024-27348 - https://github.com/kljunowsky/CVE-2024-27348 CVE-2024-27348 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-27348 - https://github.com/wjlin0/poc-doc @@ -166160,6 +166233,7 @@ CVE-2024-27516 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-27517 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-27518 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-27518 - https://github.com/secunnix/CVE-2024-27518 +CVE-2024-27521 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2754 - https://github.com/NaInSec/CVE-LIST CVE-2024-27540 - https://github.com/Halcy0nic/Trophies CVE-2024-27540 - https://github.com/skinnyrad/Trophies @@ -166287,6 +166361,7 @@ CVE-2024-27804 - https://github.com/GhostTroops/TOP CVE-2024-27804 - https://github.com/R00tkitSMM/CVE-2024-27804 CVE-2024-27804 - https://github.com/SnoopyTools/Rootkit-cve2024 CVE-2024-27804 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-27815 - https://github.com/jprx/CVE-2024-27815 CVE-2024-27815 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-27815 - https://github.com/sreedevk/bookmarks CVE-2024-27822 - https://github.com/houjingyi233/macOS-iOS-system-security @@ -166660,6 +166735,7 @@ CVE-2024-28395 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-28396 - https://github.com/NaInSec/CVE-LIST CVE-2024-28396 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-28397 - https://github.com/Marven11/CVE-2024-28397 +CVE-2024-28397 - https://github.com/Marven11/CVE-2024-28397-js2py-Sandbox-Escape CVE-2024-28397 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-28401 - https://github.com/NaInSec/CVE-LIST CVE-2024-28401 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -166927,12 +167003,17 @@ CVE-2024-28978 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-28979 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2898 - https://github.com/LaPhilosophie/IoT-vulnerable CVE-2024-2899 - https://github.com/LaPhilosophie/IoT-vulnerable +CVE-2024-28995 - https://github.com/0xc4t/CVE-2024-28995 CVE-2024-28995 - https://github.com/Ostorlab/KEV +CVE-2024-28995 - https://github.com/bigb0x/CVE-2024-28995 CVE-2024-28995 - https://github.com/enomothem/PenTestNote +CVE-2024-28995 - https://github.com/krypton-kry/CVE-2024-28995 CVE-2024-28995 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-28995 - https://github.com/onewinner/POCS CVE-2024-28995 - https://github.com/tanjiti/sec_profile CVE-2024-28995 - https://github.com/wjlin0/poc-doc CVE-2024-28995 - https://github.com/wy876/POC +CVE-2024-28999 - https://github.com/HussainFathy/CVE-2024-28999 CVE-2024-28999 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-2900 - https://github.com/LaPhilosophie/IoT-vulnerable CVE-2024-29003 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -167158,6 +167239,7 @@ CVE-2024-29272 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-29272 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-29273 - https://github.com/NaInSec/CVE-LIST CVE-2024-29273 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-29275 - https://github.com/Cyphercoda/nuclei_template CVE-2024-29275 - https://github.com/NaInSec/CVE-LIST CVE-2024-29275 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-29278 - https://github.com/QDming/cve @@ -167334,6 +167416,7 @@ CVE-2024-2982 - https://github.com/LaPhilosophie/IoT-vulnerable CVE-2024-2982 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-29824 - https://github.com/Ostorlab/KEV CVE-2024-29824 - https://github.com/enomothem/PenTestNote +CVE-2024-29824 - https://github.com/horizon3ai/CVE-2024-29824 CVE-2024-29824 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-29824 - https://github.com/wjlin0/poc-doc CVE-2024-29824 - https://github.com/wy876/POC @@ -167348,6 +167431,7 @@ CVE-2024-29849 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-29849 - https://github.com/sinsinology/CVE-2024-29849 CVE-2024-2985 - https://github.com/LaPhilosophie/IoT-vulnerable CVE-2024-29855 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-29855 - https://github.com/sinsinology/CVE-2024-29855 CVE-2024-29857 - https://github.com/cdupuis/aspnetapp CVE-2024-29857 - https://github.com/ytono/gcp-arcade CVE-2024-29858 - https://github.com/NaInSec/CVE-LIST @@ -167444,6 +167528,10 @@ CVE-2024-2997 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-2997 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-29972 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-29973 - https://github.com/Ostorlab/KEV +CVE-2024-29973 - https://github.com/RevoltSecurities/CVE-2024-29973 +CVE-2024-29973 - https://github.com/bigb0x/CVE-2024-29973 +CVE-2024-29973 - https://github.com/k3lpi3b4nsh33/CVE-2024-29973 +CVE-2024-29973 - https://github.com/momika233/CVE-2024-29973 CVE-2024-29973 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-29973 - https://github.com/wjlin0/poc-doc CVE-2024-29973 - https://github.com/wy876/POC @@ -167491,10 +167579,12 @@ CVE-2024-3006 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3007 - https://github.com/LaPhilosophie/IoT-vulnerable CVE-2024-3007 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-30078 - https://github.com/0xMarcio/cve +CVE-2024-30078 - https://github.com/52by/CVE-2024-30078 CVE-2024-30078 - https://github.com/GhostTroops/TOP CVE-2024-30078 - https://github.com/Jappie3/starred CVE-2024-30078 - https://github.com/blkph0x/CVE_2024_30078_POC_WIFI CVE-2024-30078 - https://github.com/enomothem/PenTestNote +CVE-2024-30078 - https://github.com/kvx07/CVE_2024_30078_A_POC CVE-2024-30078 - https://github.com/lvyitian/CVE-2024-30078- CVE-2024-30078 - https://github.com/nkontopoul/checkwifivulnerability CVE-2024-30078 - https://github.com/nomi-sec/PoC-in-GitHub @@ -167536,6 +167626,7 @@ CVE-2024-30203 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-30204 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-30205 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-30210 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-30212 - https://github.com/Fehr-GmbH/blackleak CVE-2024-30212 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-3022 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-30221 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -167581,6 +167672,7 @@ CVE-2024-30263 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-30266 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-30269 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3027 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-30270 - https://github.com/Alchemist3dot14/CVE-2024-30270-PoC CVE-2024-30270 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-30284 - https://github.com/markyason/markyason.github.io CVE-2024-3030 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -167929,6 +168021,7 @@ CVE-2024-3094 - https://github.com/buluma/ansible-role-cve_2024_3094 CVE-2024-3094 - https://github.com/buluma/ansible-role-openjdk CVE-2024-3094 - https://github.com/buluma/buluma CVE-2024-3094 - https://github.com/byinarie/CVE-2024-3094-info +CVE-2024-3094 - https://github.com/c4pt000/kernel-6.8.3-expSEHDsec-fclock-fsync-cpu CVE-2024-3094 - https://github.com/chadsr/stars CVE-2024-3094 - https://github.com/chavezvic/update-checker-Penguin CVE-2024-3094 - https://github.com/christoofar/safexz @@ -168072,6 +168165,7 @@ CVE-2024-31208 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-31209 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-31210 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-31211 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-31211 - https://github.com/truocphan/TP-VulnBox CVE-2024-31213 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-31214 - https://github.com/nvn1729/advisories CVE-2024-31215 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -168206,6 +168300,7 @@ CVE-2024-31851 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-31852 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-31857 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-31861 - https://github.com/enomothem/PenTestNote +CVE-2024-31861 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-31861 - https://github.com/tanjiti/sec_profile CVE-2024-31864 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-31865 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -168238,6 +168333,7 @@ CVE-2024-31975 - https://github.com/actuator/cve CVE-2024-31976 - https://github.com/actuator/cve CVE-2024-31977 - https://github.com/actuator/cve CVE-2024-31982 - https://github.com/Ostorlab/KEV +CVE-2024-31982 - https://github.com/bigb0x/CVE-2024-31982 CVE-2024-31982 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-31982 - https://github.com/tanjiti/sec_profile CVE-2024-31989 - https://github.com/nomi-sec/PoC-in-GitHub @@ -168477,6 +168573,7 @@ CVE-2024-32674 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-32679 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-32699 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-32700 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-32709 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-32709 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-32709 - https://github.com/truonghuuphuc/CVE-2024-32709-Poc CVE-2024-32709 - https://github.com/wy876/POC @@ -168856,6 +168953,7 @@ CVE-2024-34061 - https://github.com/Nguyen-Trung-Kien/CVE CVE-2024-34061 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-34062 - https://github.com/CopperEagle/CopperEagle CVE-2024-34064 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34064 - https://github.com/rohaquinlop/immunipy CVE-2024-34069 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-34078 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-34082 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -168954,10 +169052,13 @@ CVE-2024-34461 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-34466 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-34469 - https://github.com/Toxich4/CVE-2024-34469 CVE-2024-34469 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-34470 - https://github.com/Mr-r00t11/CVE-2024-34470 CVE-2024-34470 - https://github.com/Ostorlab/KEV +CVE-2024-34470 - https://github.com/bigb0x/CVE-2024-34470 CVE-2024-34470 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-34470 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-34470 - https://github.com/osvaldotenorio/CVE-2024-34470 +CVE-2024-34470 - https://github.com/th3gokul/CVE-2024-34470 CVE-2024-34470 - https://github.com/wjlin0/poc-doc CVE-2024-34470 - https://github.com/wy876/POC CVE-2024-34470 - https://github.com/wy876/wiki @@ -168994,6 +169095,22 @@ CVE-2024-3460 - https://github.com/DojoSecurity/DojoSecurity CVE-2024-3460 - https://github.com/afine-com/research CVE-2024-3461 - https://github.com/DojoSecurity/DojoSecurity CVE-2024-3461 - https://github.com/afine-com/research +CVE-2024-34621 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34622 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34623 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34624 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34625 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34626 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34627 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34628 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34629 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34630 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34631 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34632 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34633 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34634 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34635 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-34683 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-34693 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-34716 - https://github.com/aelmokhtar/CVE-2024-34716_PoC CVE-2024-34716 - https://github.com/nomi-sec/PoC-in-GitHub @@ -169041,6 +169158,7 @@ CVE-2024-34958 - https://github.com/Gr-1m/CVE-2024-34958-1 CVE-2024-34958 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-34958 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-34974 - https://github.com/cisagov/vulnrichment +CVE-2024-34982 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-34982 - https://github.com/tanjiti/sec_profile CVE-2024-34987 - https://github.com/MarkLee131/PoCs CVE-2024-34995 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -169221,6 +169339,7 @@ CVE-2024-36104 - https://github.com/Mr-xn/CVE-2024-32113 CVE-2024-36104 - https://github.com/RacerZ-fighting/CVE-2024-32113-POC CVE-2024-36104 - https://github.com/Threekiii/Awesome-POC CVE-2024-36104 - https://github.com/Threekiii/CVE +CVE-2024-36104 - https://github.com/ahisec/nuclei-tps CVE-2024-36104 - https://github.com/enomothem/PenTestNote CVE-2024-36104 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-36104 - https://github.com/tanjiti/sec_profile @@ -169247,7 +169366,9 @@ CVE-2024-36401 - https://github.com/Threekiii/Awesome-POC CVE-2024-36401 - https://github.com/Threekiii/CVE CVE-2024-36401 - https://github.com/TrojanAZhen/Self_Back CVE-2024-36401 - https://github.com/Y4tacker/JavaSec +CVE-2024-36401 - https://github.com/ahisec/nuclei-tps CVE-2024-36401 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-36401 - https://github.com/onewinner/POCS CVE-2024-36401 - https://github.com/peiqiF4ck/WebFrameworkTools-5.1-main CVE-2024-36401 - https://github.com/tanjiti/sec_profile CVE-2024-36401 - https://github.com/wy876/POC @@ -169270,6 +169391,7 @@ CVE-2024-36510 - https://github.com/martinstnv/martinstnv CVE-2024-3652 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-36522 - https://github.com/Threekiii/CVE CVE-2024-36522 - https://github.com/enomothem/PenTestNote +CVE-2024-36527 - https://github.com/bigb0x/CVE-2024-36527 CVE-2024-36527 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-36539 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-36586 - https://github.com/go-compile/security-advisories @@ -169297,10 +169419,13 @@ CVE-2024-36759 - https://github.com/YjjNJUPT/AsiaCCS2024_vul_report CVE-2024-36795 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-36821 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-36837 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-36837 - https://github.com/phtcloud-dev/CVE-2024-36837 CVE-2024-36837 - https://github.com/tanjiti/sec_profile +CVE-2024-36840 - https://github.com/InfoSec-DB/InfoSec-DB CVE-2024-36842 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-3686 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3687 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-36877 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-3688 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3689 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3690 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -169322,6 +169447,7 @@ CVE-2024-3698 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3699 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-36991 - https://github.com/Ostorlab/KEV CVE-2024-36991 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-36991 - https://github.com/onewinner/POCS CVE-2024-3700 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-37032 - https://github.com/Hatcat123/my_stars CVE-2024-37032 - https://github.com/Mr-xn/Penetration_Testing_POC @@ -169330,6 +169456,7 @@ CVE-2024-37032 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-37032 - https://github.com/tanjiti/sec_profile CVE-2024-3704 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3705 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-37051 - https://github.com/LeadroyaL/CVE-2024-37051-EXP CVE-2024-37051 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-3706 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3707 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -169379,11 +169506,13 @@ CVE-2024-3767 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3768 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3769 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3770 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-37705 - https://github.com/Souhardya/Exploit-PoCs CVE-2024-3772 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3772 - https://github.com/seal-community/patches CVE-2024-37726 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-37726 - https://github.com/silentEAG/awesome-stars CVE-2024-3774 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-37742 - https://github.com/Eteblue/CVE-2024-37742 CVE-2024-37742 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-3775 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-37759 - https://github.com/nomi-sec/PoC-in-GitHub @@ -169400,6 +169529,7 @@ CVE-2024-3781 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3782 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3783 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3784 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-37843 - https://github.com/gsmith257-cyber/CVE-2024-37843-POC CVE-2024-37843 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-3785 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3786 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -169421,8 +169551,11 @@ CVE-2024-3806 - https://github.com/truonghuuphuc/CVE-2024-3806-AND-CVE-2024-3807 CVE-2024-3807 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-3807 - https://github.com/truonghuuphuc/CVE-2024-3806-AND-CVE-2024-3807-Poc CVE-2024-38077 - https://github.com/0xMarcio/cve +CVE-2024-38077 - https://github.com/BambiZombie/CVE-2024-38077-check +CVE-2024-38077 - https://github.com/GhostTroops/TOP CVE-2024-38077 - https://github.com/TrojanAZhen/Self_Back CVE-2024-38077 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-38077 - https://github.com/silentEAG/awesome-stars CVE-2024-38100 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-38100 - https://github.com/tanjiti/sec_profile CVE-2024-38112 - https://github.com/thepcn3rd/goAdventures @@ -169447,7 +169580,9 @@ CVE-2024-38379 - https://github.com/waspthebughunter/waspthebughunter CVE-2024-3838 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3839 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-38395 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-38395 - https://github.com/vin01/poc-cve-2024-38396 CVE-2024-38396 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-38396 - https://github.com/vin01/poc-cve-2024-38396 CVE-2024-3840 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3841 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-38427 - https://github.com/xsscx/Commodity-Injection-Signatures @@ -169495,6 +169630,7 @@ CVE-2024-38856 - https://github.com/Ostorlab/KEV CVE-2024-38856 - https://github.com/RacerZ-fighting/CVE-2024-32113-POC CVE-2024-38856 - https://github.com/RacerZ-fighting/RacerZ-fighting CVE-2024-38856 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-38856 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-38856 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-38856 - https://github.com/tanjiti/sec_profile CVE-2024-38856 - https://github.com/wy876/POC @@ -169520,12 +169656,14 @@ CVE-2024-3910 - https://github.com/LaPhilosophie/IoT-vulnerable CVE-2024-3914 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3914 - https://github.com/leesh3288/leesh3288 CVE-2024-39203 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-3921 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-39210 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-39211 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-3922 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-39248 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-39249 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-39250 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-39251 - https://github.com/Souhardya/Exploit-PoCs CVE-2024-3928 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-39304 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-39306 - https://github.com/nomi-sec/PoC-in-GitHub @@ -169542,22 +169680,30 @@ CVE-2024-3957 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3958 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-3961 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-39614 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-39639 - https://github.com/20142995/nuclei-templates +CVE-2024-39640 - https://github.com/20142995/nuclei-templates CVE-2024-39641 - https://github.com/20142995/nuclei-templates CVE-2024-39642 - https://github.com/20142995/nuclei-templates CVE-2024-39643 - https://github.com/20142995/nuclei-templates +CVE-2024-39644 - https://github.com/20142995/nuclei-templates +CVE-2024-39645 - https://github.com/20142995/nuclei-templates CVE-2024-39646 - https://github.com/20142995/nuclei-templates CVE-2024-39647 - https://github.com/20142995/nuclei-templates CVE-2024-39648 - https://github.com/20142995/nuclei-templates CVE-2024-39649 - https://github.com/20142995/nuclei-templates +CVE-2024-39650 - https://github.com/20142995/nuclei-templates CVE-2024-39651 - https://github.com/20142995/nuclei-templates CVE-2024-39652 - https://github.com/20142995/nuclei-templates CVE-2024-39653 - https://github.com/20142995/nuclei-templates +CVE-2024-39654 - https://github.com/20142995/nuclei-templates CVE-2024-39655 - https://github.com/20142995/nuclei-templates CVE-2024-39656 - https://github.com/20142995/nuclei-templates +CVE-2024-39657 - https://github.com/20142995/nuclei-templates CVE-2024-39658 - https://github.com/20142995/nuclei-templates CVE-2024-39659 - https://github.com/20142995/nuclei-templates CVE-2024-39660 - https://github.com/20142995/nuclei-templates CVE-2024-39661 - https://github.com/20142995/nuclei-templates +CVE-2024-39662 - https://github.com/20142995/nuclei-templates CVE-2024-39663 - https://github.com/20142995/nuclei-templates CVE-2024-39664 - https://github.com/20142995/nuclei-templates CVE-2024-39665 - https://github.com/20142995/nuclei-templates @@ -169631,6 +169777,7 @@ CVE-2024-4040 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4040 - https://github.com/getdrive/PoC CVE-2024-4040 - https://github.com/gotr00t0day/CVE-2024-4040 CVE-2024-4040 - https://github.com/jakabakos/CVE-2024-4040-CrushFTP-File-Read-vulnerability +CVE-2024-4040 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-4040 - https://github.com/nitish778191/fitness_app CVE-2024-4040 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-4040 - https://github.com/qt2a23/CVE-2024-4040 @@ -169697,6 +169844,7 @@ CVE-2024-41110 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-41110 - https://github.com/tanjiti/sec_profile CVE-2024-4112 - https://github.com/LaPhilosophie/IoT-vulnerable CVE-2024-4112 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-41123 - https://github.com/ch4n3-yoon/ch4n3-yoon CVE-2024-41123 - https://github.com/lifeparticle/Ruby-Cheatsheet CVE-2024-4113 - https://github.com/LaPhilosophie/IoT-vulnerable CVE-2024-4113 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -169783,6 +169931,7 @@ CVE-2024-41965 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-41989 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4199 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-41990 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-41991 - https://github.com/ch4n3-yoon/ch4n3-yoon CVE-2024-41991 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-41995 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4200 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -169915,10 +170064,13 @@ CVE-2024-4358 - https://github.com/verylazytech/CVE-2024-4358 CVE-2024-4358 - https://github.com/wjlin0/poc-doc CVE-2024-4358 - https://github.com/wy876/POC CVE-2024-4358 - https://github.com/wy876/wiki +CVE-2024-4359 - https://github.com/20142995/nuclei-templates +CVE-2024-4360 - https://github.com/20142995/nuclei-templates CVE-2024-4363 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4367 - https://github.com/GhostTroops/TOP CVE-2024-4367 - https://github.com/LOURC0D3/CVE-2024-4367-PoC CVE-2024-4367 - https://github.com/Threekiii/Awesome-POC +CVE-2024-4367 - https://github.com/Zombie-Kaiser/cve-2024-4367-PoC-fixed CVE-2024-4367 - https://github.com/avalahEE/pdfjs_disable_eval CVE-2024-4367 - https://github.com/clarkio/pdfjs-vuln-demo CVE-2024-4367 - https://github.com/google/fishy-pdf @@ -170010,6 +170162,7 @@ CVE-2024-4577 - https://github.com/K3ysTr0K3R/CVE-2024-4577-EXPLOIT CVE-2024-4577 - https://github.com/K3ysTr0K3R/K3ysTr0K3R CVE-2024-4577 - https://github.com/Mr-xn/Penetration_Testing_POC CVE-2024-4577 - https://github.com/Ostorlab/KEV +CVE-2024-4577 - https://github.com/Sh0ckFR/CVE-2024-4577 CVE-2024-4577 - https://github.com/Sysc4ll3r/CVE-2024-4577 CVE-2024-4577 - https://github.com/TAM-K592/CVE-2024-4577 CVE-2024-4577 - https://github.com/Threekiii/Awesome-POC @@ -170020,17 +170173,21 @@ CVE-2024-4577 - https://github.com/Wh02m1/CVE-2024-4577 CVE-2024-4577 - https://github.com/XiangDongCJC/CVE-2024-4577-PHP-CGI-RCE CVE-2024-4577 - https://github.com/Yukiioz/CVE-2024-4577 CVE-2024-4577 - https://github.com/ZephrFish/CVE-2024-4577-PHP-RCE +CVE-2024-4577 - https://github.com/aaddmin1122345/CVE-2024-4577-POC CVE-2024-4577 - https://github.com/bl4cksku11/CVE-2024-4577 CVE-2024-4577 - https://github.com/charis3306/CVE-2024-4577 CVE-2024-4577 - https://github.com/dbyMelina/CVE-2024-4577 CVE-2024-4577 - https://github.com/enomothem/PenTestNote CVE-2024-4577 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-4577 - https://github.com/fliggyaa/fscanpoc +CVE-2024-4577 - https://github.com/gotr00t0day/CVE-2024-4577 CVE-2024-4577 - https://github.com/huseyinstif/CVE-2024-4577-Nuclei-Template CVE-2024-4577 - https://github.com/it-t4mpan/check_cve_2024_4577.sh CVE-2024-4577 - https://github.com/manuelinfosec/CVE-2024-4577 CVE-2024-4577 - https://github.com/nitish778191/fitness_app CVE-2024-4577 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-4577 - https://github.com/ohhhh693/CVE-2024-4577 +CVE-2024-4577 - https://github.com/onewinner/POCS CVE-2024-4577 - https://github.com/princew88/CVE-2024-4577 CVE-2024-4577 - https://github.com/taida957789/CVE-2024-4577 CVE-2024-4577 - https://github.com/tanjiti/sec_profile @@ -170168,6 +170325,7 @@ CVE-2024-4891 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4893 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4894 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4898 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-4898 - https://github.com/truonghuuphuc/CVE-2024-4898-Poc CVE-2024-4903 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4923 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4925 - https://github.com/fkie-cad/nvd-json-data-feeds @@ -170201,7 +170359,9 @@ CVE-2024-4956 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-4956 - https://github.com/gmh5225/CVE-2024-4956 CVE-2024-4956 - https://github.com/ifconfig-me/CVE-2024-4956-Bulk-Scanner CVE-2024-4956 - https://github.com/ifconfig-me/Path-Traversal-Scanner +CVE-2024-4956 - https://github.com/k3ppf0r/2024-PocLib CVE-2024-4956 - https://github.com/nomi-sec/PoC-in-GitHub +CVE-2024-4956 - https://github.com/onewinner/POCS CVE-2024-4956 - https://github.com/securitycipher/daily-bugbounty-writeups CVE-2024-4956 - https://github.com/tanjiti/sec_profile CVE-2024-4956 - https://github.com/thinhap/CVE-2024-4956-PoC @@ -170447,6 +170607,7 @@ CVE-2024-6529 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-6536 - https://github.com/nomi-sec/PoC-in-GitHub CVE-2024-6552 - https://github.com/20142995/nuclei-templates CVE-2024-6553 - https://github.com/20142995/nuclei-templates +CVE-2024-6562 - https://github.com/20142995/nuclei-templates CVE-2024-6571 - https://github.com/20142995/nuclei-templates CVE-2024-6589 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-6629 - https://github.com/20142995/nuclei-templates @@ -170549,11 +170710,17 @@ CVE-2024-7363 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-7364 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-7365 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-7366 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-7382 - https://github.com/20142995/nuclei-templates CVE-2024-7383 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-7395 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-7396 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-7397 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-7409 - https://github.com/fkie-cad/nvd-json-data-feeds +CVE-2024-7410 - https://github.com/20142995/nuclei-templates +CVE-2024-7412 - https://github.com/20142995/nuclei-templates +CVE-2024-7413 - https://github.com/20142995/nuclei-templates +CVE-2024-7414 - https://github.com/20142995/nuclei-templates +CVE-2024-7416 - https://github.com/20142995/nuclei-templates CVE-2024-7436 - https://github.com/tanjiti/sec_profile CVE-2024-7439 - https://github.com/fkie-cad/nvd-json-data-feeds CVE-2024-7442 - https://github.com/fkie-cad/nvd-json-data-feeds diff --git a/references.txt b/references.txt index 1cc80d1d8f..7168eaed65 100644 --- a/references.txt +++ b/references.txt @@ -59731,6 +59731,7 @@ CVE-2019-19003 - https://search.abb.com/library/Download.aspx?DocumentID=9AKK107 CVE-2019-19004 - https://github.com/autotrace/autotrace/pull/40 CVE-2019-19005 - https://github.com/autotrace/autotrace/pull/40 CVE-2019-19006 - https://community.freepbx.org/t/freepbx-security-vulnerability-sec-2019-001/62772 +CVE-2019-19006 - https://wiki.freepbx.org/display/FOP/2019-11-20+Remote+Admin+Authentication+Bypass CVE-2019-19007 - https://medium.com/@rsantos_14778/1500b407dccc CVE-2019-19011 - https://github.com/miniupnp/ngiflib/issues/16 CVE-2019-19012 - https://github.com/kkos/oniguruma/issues/164 @@ -60016,6 +60017,7 @@ CVE-2019-19536 - https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux. CVE-2019-19537 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.2.10 CVE-2019-19537 - https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=303911cfc5b95d33687d9046133ff184cf5043ff CVE-2019-19538 - https://community.freepbx.org/t/freepbx-security-vulnerability-sec-2019-00 +CVE-2019-19538 - https://wiki.freepbx.org/display/FOP/2019-12-03+Remote+Command+Execution CVE-2019-19540 - https://wpvulndb.com/vulnerabilities/9974 CVE-2019-19541 - https://wpvulndb.com/vulnerabilities/9974 CVE-2019-19542 - https://wpvulndb.com/vulnerabilities/9974 @@ -60139,6 +60141,7 @@ CVE-2019-19833 - http://packetstormsecurity.com/files/155974/Tautulli-2.1.9-Deni CVE-2019-19844 - http://packetstormsecurity.com/files/155872/Django-Account-Hijack.html CVE-2019-19851 - https://wiki.freepbx.org/display/FOP/2020-01-09+XSS+Injection+vulnerability+in+Superfecta+Module CVE-2019-19851 - https://wiki.freepbx.org/display/FOP/List+of+Securities+Vulnerabilities +CVE-2019-19852 - https://wiki.freepbx.org/display/FOP/2020-01-09+XSS+Injection+vulnerability+in+Call+Event+Logging+module CVE-2019-19852 - https://wiki.freepbx.org/display/FOP/List+of+Securities+Vulnerabilities CVE-2019-19854 - https://websec.nl/news.php CVE-2019-19855 - https://websec.nl/news.php @@ -60466,6 +60469,15 @@ CVE-2019-20447 - https://packetstormsecurity.com/files/152503/Jobberbase-CMS-2.0 CVE-2019-20447 - https://www.exploit-db.com/exploits/47311 CVE-2019-20451 - https://www.exploit-db.com/papers/47535 CVE-2019-20455 - https://github.com/globalpayments/php-sdk/pull/8 +CVE-2019-20463 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2019-20464 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2019-20465 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2019-20466 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2019-20467 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2019-20468 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2019-20470 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2019-20471 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2019-20473 - http://seclists.org/fulldisclosure/2024/Jul/14 CVE-2019-20477 - https://www.exploit-db.com/download/47655 CVE-2019-20478 - https://www.exploit-db.com/exploits/47655 CVE-2019-20480 - https://cert.vde.com/en-us/advisories/vde-2019-010 @@ -61614,8 +61626,10 @@ CVE-2019-3862 - https://www.oracle.com/security-alerts/cpujan2020.html CVE-2019-3862 - https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html CVE-2019-3863 - https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html CVE-2019-3870 - https://www.synology.com/security/advisory/Synology_SA_19_15 +CVE-2019-3874 - https://usn.ubuntu.com/3982-1/ CVE-2019-3874 - https://www.oracle.com/security-alerts/cpuApr2021.html CVE-2019-3880 - https://www.synology.com/security/advisory/Synology_SA_19_15 +CVE-2019-3882 - https://usn.ubuntu.com/3982-1/ CVE-2019-3883 - https://pagure.io/389-ds-base/issue/50329 CVE-2019-3900 - http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html CVE-2019-3900 - https://usn.ubuntu.com/4115-1/ @@ -64370,8 +64384,14 @@ CVE-2020-11914 - https://tools.cisco.com/security/center/content/CiscoSecurityAd CVE-2020-11914 - https://www.jsof-tech.com/ripple20/ CVE-2020-11914 - https://www.kb.cert.org/vuls/id/257161 CVE-2020-11914 - https://www.kb.cert.org/vuls/id/257161/ +CVE-2020-11915 - http://seclists.org/fulldisclosure/2024/Jul/14 CVE-2020-11915 - https://www.pentestpartners.com/security-blog/vulnerable-wi-fi-dildo-camera-endoscope-yes-really/ +CVE-2020-11920 - http://seclists.org/fulldisclosure/2024/Jul/14 CVE-2020-11920 - https://www.pentestpartners.com/security-blog/vulnerable-wi-fi-dildo-camera-endoscope-yes-really/ +CVE-2020-11922 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2020-11923 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2020-11924 - http://seclists.org/fulldisclosure/2024/Jul/14 +CVE-2020-11925 - http://seclists.org/fulldisclosure/2024/Jul/14 CVE-2020-11930 - https://wpvulndb.com/vulnerabilities/10181 CVE-2020-11935 - https://ubuntu.com/security/CVE-2020-11935 CVE-2020-11937 - https://github.com/sungjungk/whoopsie_killer @@ -84994,6 +85014,7 @@ CVE-2022-3336 - https://wpscan.com/vulnerability/57bc6633-1aeb-4c20-a2a5-9b3fa10 CVE-2022-3338 - https://kcm.trellix.com/corporate/index?page=content&id=SB10387 CVE-2022-3339 - https://kcm.trellix.com/corporate/index?page=content&id=SB10387 CVE-2022-3343 - https://wpscan.com/vulnerability/e507b1b5-1a56-4b2f-b7e7-e22f6da1e32a +CVE-2022-3349 - https://vuldb.com/?id.209679 CVE-2022-3350 - https://wpscan.com/vulnerability/6d796b83-03c0-49f8-8d07-5c63ce8a32b9 CVE-2022-3352 - https://huntr.dev/bounties/d058f182-a49b-40c7-9234-43d4c5a29f60 CVE-2022-3354 - https://vuldb.com/?id.209686 @@ -85930,6 +85951,7 @@ CVE-2022-37312 - https://seclists.org/fulldisclosure/2022/Nov/18 CVE-2022-37313 - https://seclists.org/fulldisclosure/2022/Nov/18 CVE-2022-37317 - https://www.archerirm.community/t5/security-advisories/archer-update-for-multiple-vulnerabilities/ta-p/682060 CVE-2022-37318 - https://www.archerirm.community/t5/security-advisories/archer-update-for-multiple-vulnerabilities/ta-p/682060 +CVE-2022-3732 - https://vuldb.com/?id.212414 CVE-2022-37326 - https://www.cyberark.com/resources/threat-research-blog/breaking-docker-named-pipes-systematically-docker-desktop-privilege-escalation-part-2 CVE-2022-37331 - https://talosintelligence.com/vulnerability_reports/TALOS-2022-1672 CVE-2022-37332 - https://talosintelligence.com/vulnerability_reports/TALOS-2022-1602 @@ -91192,6 +91214,7 @@ CVE-2023-2792 - https://mattermost.com/security-updates/ CVE-2023-2793 - https://mattermost.com/security-updates/ CVE-2023-27935 - https://www.talosintelligence.com/vulnerability_reports/TALOS-2022-1676 CVE-2023-2795 - https://wpscan.com/vulnerability/2d6ecd21-3dd4-423d-80e7-277c45080a9f +CVE-2023-27952 - http://seclists.org/fulldisclosure/2024/Jul/18 CVE-2023-2796 - http://packetstormsecurity.com/files/173984/WordPress-EventON-Calendar-4.4-Insecure-Direct-Object-Reference.html CVE-2023-2796 - https://wpscan.com/vulnerability/e9ef793c-e5a3-4c55-beee-56b0909f7a0d CVE-2023-2797 - https://mattermost.com/security-updates/ @@ -93192,6 +93215,7 @@ CVE-2023-38698 - https://github.com/ensdomains/ens-contracts/security/advisories CVE-2023-38701 - https://github.com/input-output-hk/hydra/blob/master/CHANGELOG.md#0120---2023-08-18 CVE-2023-38701 - https://github.com/input-output-hk/hydra/security/advisories/GHSA-6x9v-7x5r-w8w6 CVE-2023-38702 - https://github.com/KnowageLabs/Knowage-Server/security/advisories/GHSA-7mjh-73q3-c3fc +CVE-2023-38709 - http://seclists.org/fulldisclosure/2024/Jul/18 CVE-2023-3878 - https://github.com/E1CHO/cve_hub/blob/main/Beauty%20Salon%20Management%20System/Beauty%20Salon%20Management%20System%20-%20vuln%2010.pdf CVE-2023-38817 - https://ioctl.fail/echo-ac-writeup/ CVE-2023-3882 - https://vuldb.com/?id.235244 @@ -95393,6 +95417,10 @@ CVE-2023-52339 - https://github.com/Matroska-Org/libebml/issues/147 CVE-2023-52340 - https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3 CVE-2023-5235 - https://wpscan.com/vulnerability/35c9a954-37fc-4818-a71f-34aaaa0fa3db CVE-2023-52355 - https://gitlab.com/libtiff/libtiff/-/issues/621 +CVE-2023-52356 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2023-52356 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2023-52356 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2023-52356 - http://seclists.org/fulldisclosure/2024/Jul/19 CVE-2023-52356 - https://gitlab.com/libtiff/libtiff/-/issues/622 CVE-2023-5237 - https://research.cleantalk.org/cve-2023-5237-memberlite-shortcodes-stored-xss-via-shortcode CVE-2023-5237 - https://wpscan.com/vulnerability/a46d686c-6234-4aa8-a656-00a65c55d0b0 @@ -95746,6 +95774,7 @@ CVE-2023-6272 - https://wpscan.com/vulnerability/a03243ea-fee7-46e4-8037-a228afc CVE-2023-6274 - https://github.com/Carol7S/cve/blob/main/rce.md CVE-2023-6274 - https://vuldb.com/?id.246103 CVE-2023-6276 - https://github.com/YXuanZ1216/cve/blob/main/sql.md +CVE-2023-6277 - http://seclists.org/fulldisclosure/2024/Jul/16 CVE-2023-6277 - https://gitlab.com/libtiff/libtiff/-/issues/614 CVE-2023-6278 - https://wpscan.com/vulnerability/dfe5001f-31b9-4de2-a240-f7f5a992ac49/ CVE-2023-6279 - https://wpscan.com/vulnerability/626bbc7d-0d0f-4418-ac61-666278a1cbdb/ @@ -96406,6 +96435,8 @@ CVE-2024-1981 - https://research.hisolutions.com/2024/01/multiple-vulnerabilitie CVE-2024-1982 - https://research.hisolutions.com/2024/01/multiple-vulnerabilities-in-wordpress-plugin-wpvivid-backup-and-migration/ CVE-2024-1983 - https://wpscan.com/vulnerability/bf3a31de-a227-4db1-bd18-ce6a78dc96fb/ CVE-2024-2002 - https://github.com/davea42/libdwarf-code/blob/main/bugxml/data.txt +CVE-2024-2004 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-2004 - http://seclists.org/fulldisclosure/2024/Jul/19 CVE-2024-2014 - https://github.com/mashroompc0527/CVE/blob/main/vul.md CVE-2024-2016 - https://vuldb.com/?id.255270 CVE-2024-2018 - https://melapress.com/support/kb/wp-activity-log-plugin-changelog/ @@ -96948,6 +96979,8 @@ CVE-2024-23763 - https://herolab.usd.de/security-advisories/usd-2023-0047/ CVE-2024-23765 - https://sensepost.com/blog/2024/targeting-an-industrial-protocol-gateway/ CVE-2024-23766 - https://sensepost.com/blog/2024/targeting-an-industrial-protocol-gateway/ CVE-2024-23767 - https://sensepost.com/blog/2024/targeting-an-industrial-protocol-gateway/ +CVE-2024-2379 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-2379 - http://seclists.org/fulldisclosure/2024/Jul/19 CVE-2024-23817 - https://github.com/Dolibarr/dolibarr/security/advisories/GHSA-7947-48q7-cp5m CVE-2024-23818 - https://osgeo-org.atlassian.net/browse/GEOS-11153 CVE-2024-23819 - https://osgeo-org.atlassian.net/browse/GEOS-11154 @@ -96967,6 +97000,8 @@ CVE-2024-23897 - http://packetstormsecurity.com/files/176840/Jenkins-2.441-LTS-2 CVE-2024-2391 - https://www.exploit-db.com/exploits/51153 CVE-2024-2394 - https://github.com/LiAoRJ/CVE_Hunter/blob/main/RCE-1.md CVE-2024-23940 - https://medium.com/@s1kr10s/av-when-a-friend-becomes-an-enemy-55f41aba42b1 +CVE-2024-2398 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-2398 - http://seclists.org/fulldisclosure/2024/Jul/19 CVE-2024-23985 - https://packetstormsecurity.com/files/176663/EzServer-6.4.017-Denial-Of-Service.html CVE-2024-23995 - https://github.com/EQSTLab/PoC/blob/main/2024/RCE/CVE-2024-23995/README.md CVE-2024-23997 - https://github.com/EQSTLab/PoC/tree/main/2024/LCE/CVE-2024-23997 @@ -97086,6 +97121,8 @@ CVE-2024-24573 - https://github.com/WillyXJ/facileManager/security/advisories/GH CVE-2024-24574 - https://github.com/thorsten/phpMyFAQ/pull/2827 CVE-2024-24574 - https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-7m8g-fprr-47fx CVE-2024-24578 - https://github.com/jens-maus/RaspberryMatic/security/advisories/GHSA-q967-q4j8-637h +CVE-2024-2466 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-2466 - http://seclists.org/fulldisclosure/2024/Jul/19 CVE-2024-2470 - https://wpscan.com/vulnerability/8514b8ce-ff23-4aba-b2f1-fd36beb7d2ff/ CVE-2024-24707 - https://snicco.io/vulnerability-disclosure/cwicly/remote-code-execution-cwicly-1-4-0-2?_s_id=cve CVE-2024-24724 - https://packetstormsecurity.com/files/177857 @@ -97109,6 +97146,7 @@ CVE-2024-24793 - https://talosintelligence.com/vulnerability_reports/TALOS-2024- CVE-2024-24793 - https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1931 CVE-2024-24794 - https://talosintelligence.com/vulnerability_reports/TALOS-2024-1931 CVE-2024-24794 - https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1931 +CVE-2024-24795 - http://seclists.org/fulldisclosure/2024/Jul/18 CVE-2024-24806 - http://www.openwall.com/lists/oss-security/2024/02/08/2 CVE-2024-24806 - https://github.com/libuv/libuv/security/advisories/GHSA-f74f-cvh7-c6q6 CVE-2024-24808 - https://github.com/pyload/pyload/security/advisories/GHSA-g3cm-qg2v-2hj5 @@ -97532,6 +97570,7 @@ CVE-2024-27299 - https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-q CVE-2024-27300 - https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-q7g6-xfh2-vhpx CVE-2024-27301 - https://github.com/root3nl/SupportApp/security/advisories/GHSA-jr78-247f-rhqc CVE-2024-27302 - https://github.com/zeromicro/go-zero/security/advisories/GHSA-fgxv-gw55-r5fq +CVE-2024-27316 - http://seclists.org/fulldisclosure/2024/Jul/18 CVE-2024-27318 - https://security.snyk.io/vuln/SNYK-PYTHON-ONNX-2395479 CVE-2024-2738 - https://gist.github.com/Xib3rR4dAr/561ac3c17b92cb55d3032504a076fa4b CVE-2024-2738 - https://gist.github.com/Xib3rR4dAr/b1eec00e844932c6f2f30a63024b404e @@ -97622,6 +97661,25 @@ CVE-2024-27747 - https://github.com/shubham-s-pandey/CVE_POC/blob/main/CVE-2024- CVE-2024-27752 - https://github.com/flyhha/cms/blob/main/1.md CVE-2024-27757 - https://github.com/jubilianite/flusity-CMS/security/advisories/GHSA-5843-5m74-7fqh CVE-2024-27758 - https://gist.github.com/renbou/957f70d27470982994f12a1d70153d09 +CVE-2024-27826 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-27862 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27863 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-27871 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-27871 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27872 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27873 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-27873 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-27873 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27873 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-27877 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27877 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-27878 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27881 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27881 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-27882 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27882 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-27883 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-27883 - http://seclists.org/fulldisclosure/2024/Jul/19 CVE-2024-27916 - https://github.com/stacklok/minder/security/advisories/GHSA-v627-69v2-xx37 CVE-2024-27921 - https://github.com/getgrav/grav/security/advisories/GHSA-m7hx-hw6h-mqmc CVE-2024-27923 - https://github.com/getgrav/grav/security/advisories/GHSA-f6g2-h7qv-3m5v @@ -99119,6 +99177,7 @@ CVE-2024-3939 - https://wpscan.com/vulnerability/80a9eb3a-2cb1-4844-9004-ba2554b CVE-2024-3940 - https://wpscan.com/vulnerability/bb0245e5-8e94-4f11-9003-d6208945056c/ CVE-2024-3941 - https://wpscan.com/vulnerability/6e09e922-983c-4406-8053-747d839995d1/ CVE-2024-3948 - https://github.com/xuanluansec/vul/issues/5 +CVE-2024-3959 - https://gitlab.com/gitlab-org/gitlab/-/issues/456989 CVE-2024-3963 - https://wpscan.com/vulnerability/827d738e-5369-431e-8438-b5c4d8c1f8f1/ CVE-2024-3964 - https://wpscan.com/vulnerability/ff468772-3e6a-439c-a4d7-94bd2ce1a964/ CVE-2024-3965 - https://wpscan.com/vulnerability/0e1ba2b3-5849-42f6-b503-8b3b520e4a79/ @@ -99228,12 +99287,116 @@ CVE-2024-40740 - https://github.com/minhquan202/Vuln-Netbox CVE-2024-40741 - https://github.com/minhquan202/Vuln-Netbox CVE-2024-40742 - https://github.com/minhquan202/Vuln-Netbox CVE-2024-40767 - https://launchpad.net/bugs/2071734 +CVE-2024-40774 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40774 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40774 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40775 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40775 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40776 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-40776 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40777 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40778 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40778 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40778 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40779 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-40779 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40780 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-40780 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40781 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40781 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40782 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-40782 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40783 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40783 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40784 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40785 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-40785 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40786 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40786 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40786 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40787 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40787 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40787 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40788 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40789 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-40789 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40793 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40793 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40793 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40793 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40794 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-40794 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40794 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40795 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40796 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40796 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40796 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40798 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40798 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40798 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40799 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40800 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40800 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40802 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40802 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40803 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40803 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40804 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40805 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40806 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40807 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40807 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40809 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40811 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40812 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40813 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40814 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40815 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40815 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40815 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40816 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40816 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40817 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-40817 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40817 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40818 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40818 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40818 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40818 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40821 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40821 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40822 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40823 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40823 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40824 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40824 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40827 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40827 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40828 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40828 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40829 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40829 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40829 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40832 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40833 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40833 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40833 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40834 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40834 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40835 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40835 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40835 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-40835 - http://seclists.org/fulldisclosure/2024/Jul/19 +CVE-2024-40836 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-40836 - http://seclists.org/fulldisclosure/2024/Jul/17 +CVE-2024-40836 - http://seclists.org/fulldisclosure/2024/Jul/18 CVE-2024-4090 - https://wpscan.com/vulnerability/aedcb986-0f2b-4852-baf1-6cb61e83e109/ CVE-2024-4094 - https://wpscan.com/vulnerability/04b2feba-e009-4fce-8539-5dfdb4300433/ CVE-2024-4096 - https://wpscan.com/vulnerability/4dba5e9e-24be-458a-9150-7c7a958e66cb/ CVE-2024-4105 - https://web-material3.yokogawa.com/1/36059/files/YSAR-24-0001-E.pdf CVE-2024-4106 - https://web-material3.yokogawa.com/1/36059/files/YSAR-24-0001-E.pdf CVE-2024-41108 - https://github.com/FOGProject/fogproject/security/advisories/GHSA-p3f9-4jj4-fm2g +CVE-2024-41109 - https://github.com/pimcore/admin-ui-classic-bundle/security/advisories/GHSA-fx6j-9pp6-ph36 CVE-2024-4111 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/TX9/SetLEDCfg.md CVE-2024-41112 - https://github.com/opengeos/streamlit-geospatial/blob/4b89495f3bdd481998aadf1fc74b10de0f71c237/pages/1_%F0%9F%93%B7_Timelapse.py#L373-L376 CVE-2024-41112 - https://github.com/opengeos/streamlit-geospatial/blob/4b89495f3bdd481998aadf1fc74b10de0f71c237/pages/1_%F0%9F%93%B7_Timelapse.py#L380 @@ -99278,12 +99441,15 @@ CVE-2024-4125 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/W1 CVE-2024-4126 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/W15Ev1.0/formSetSysTime.md CVE-2024-4127 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/W15Ev1.0/guestWifiRuleRefresh.md CVE-2024-41281 - https://github.com/BuaaIOTTeam/Iot_Linksys/blob/main/Linksys_WRT54G_get_merge_mac.md +CVE-2024-41332 - https://packetstormsecurity.com/files/179890/Computer-Laboratory-Management-System-1.0-Privilege-Escalation.html CVE-2024-41333 - https://packetstormsecurity.com/files/179891/Tourism-Management-System-2.0-Cross-Site-Scripting.html CVE-2024-41353 - https://github.com/phpipam/phpipam/issues/4147 CVE-2024-41354 - https://github.com/phpipam/phpipam/issues/4150 CVE-2024-41355 - https://github.com/phpipam/phpipam/issues/4151 +CVE-2024-41356 - https://github.com/phpipam/phpipam/issues/4146 CVE-2024-41357 - https://github.com/phpipam/phpipam/issues/4149 CVE-2024-41373 - https://github.com/xjzzzxx/vulFound/blob/main/icecoder/icecoder8.1_PT.md +CVE-2024-41374 - https://github.com/xjzzzxx/vulFound/blob/main/icecoder/icecoder8.1_xss2.md CVE-2024-41375 - https://github.com/xjzzzxx/vulFound/blob/main/icecoder/icecoder8.1_xss1.md CVE-2024-41376 - https://github.com/zyx0814/dzzoffice/issues/252 CVE-2024-41380 - https://github.com/microweber/microweber/issues/1111 @@ -99312,6 +99478,12 @@ CVE-2024-41440 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/he CVE-2024-41440 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/heapof-w1-png_quantize-cli-220c32/poc/sample18.png CVE-2024-41440 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/heapof-w1-png_quantize-cli-220c32/vulDescription.assets/image-20240530225208577.png CVE-2024-41440 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/heapof-w1-png_quantize-cli-220c32/vulDescription.md +CVE-2024-41443 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603 +CVE-2024-41443 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/poc +CVE-2024-41443 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/poc/sample16.png +CVE-2024-41443 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/vulDescription.assets/image-20240530223831738.png +CVE-2024-41443 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/vulDescription.assets/image-20240530223921086.png +CVE-2024-41443 - https://github.com/Helson-S/FuzzyTesting/blob/master/hicolor/stkof-w133-cp_dynamic-cute_png-603/vulDescription.md CVE-2024-4145 - https://wpscan.com/vulnerability/7d5b8764-c82d-4969-a707-f38b63bcadca/ CVE-2024-41459 - https://github.com/iotresearch/iot-vuln/blob/main/Tenda/FH1201/QuickIndex/QuickIndex.md CVE-2024-41460 - https://github.com/iotresearch/iot-vuln/blob/main/Tenda/FH1201/RouteStatic/README.md @@ -99319,17 +99491,20 @@ CVE-2024-41461 - https://github.com/iotresearch/iot-vuln/blob/main/Tenda/FH1201/ CVE-2024-41462 - https://github.com/iotresearch/iot-vuln/blob/main/Tenda/FH1201/DhcpListClient2/README.md CVE-2024-41463 - https://github.com/iotresearch/iot-vuln/blob/main/Tenda/FH1201/addressNat/README.md CVE-2024-41464 - https://github.com/iotresearch/iot-vuln/tree/main/Tenda/FH1201/RouteStatic2 +CVE-2024-41465 - https://github.com/iotresearch/iot-vuln/tree/main/Tenda/FH1201/setcfm CVE-2024-41466 - https://github.com/iotresearch/iot-vuln/blob/main/Tenda/FH1201/NatStaticSetting/README.md CVE-2024-41468 - https://github.com/iotresearch/iot-vuln/blob/main/Tenda/FH1201/exeCommand/README.md CVE-2024-41473 - https://github.com/iotresearch/iot-vuln/tree/main/Tenda/FH1201/WriteFacMac CVE-2024-4149 - https://wpscan.com/vulnerability/0256ec2a-f1a9-4110-9978-ee88f9e24237/ CVE-2024-41492 - https://gist.github.com/Swind1er/4176fdc25e415296904c9fb19e2f8293 +CVE-2024-41570 - https://blog.chebuya.com/posts/server-side-request-forgery-on-havoc-c2/ CVE-2024-41597 - https://gist.github.com/DefensiumDevelopers/608be4d10b016dce0566925368a8b08c#file-cve-2024-41597-md CVE-2024-41637 - https://blog.0xzon.dev/2024-07-27-CVE-2024-41637/ CVE-2024-4164 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/G3/G3V15/formModifyPppAuthWhiteMac.md CVE-2024-4165 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/G3/G3V15/modifyDhcpRule.md CVE-2024-41655 - https://github.com/danocmx/node-tf2-item-format/security/advisories/GHSA-8h55-q5qq-p685 CVE-2024-4166 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/G3/4G300/sub_41E858_GO.md +CVE-2024-41661 - https://github.com/yogeshojha/rengine/security/advisories/GHSA-fx7f-f735-vgh4 CVE-2024-41665 - https://github.com/ampache/ampache/security/advisories/GHSA-cp44-89r2-fxph CVE-2024-41666 - https://github.com/argoproj/argo-cd/security/advisories/GHSA-v8wx-v5jq-qhhw CVE-2024-41668 - https://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2024-004 @@ -99348,11 +99523,13 @@ CVE-2024-41808 - https://github.com/openobserve/openobserve/security/advisories/ CVE-2024-41810 - https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2 CVE-2024-41812 - https://github.com/TxtDot/txtdot/security/advisories/GHSA-4gj5-xj97-j8fp CVE-2024-41813 - https://github.com/TxtDot/txtdot/security/advisories/GHSA-4c78-229v-hf6m +CVE-2024-41815 - https://github.com/starship/starship/security/advisories/GHSA-vx24-x4mv-vwr5 CVE-2024-41816 - https://github.com/XjSv/Cooked/security/advisories/GHSA-3gw3-2qjq-xqjj CVE-2024-41817 - https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-8rxc-922v-phg8 CVE-2024-41818 - https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v CVE-2024-41819 - https://github.com/enchant97/note-mark/security/advisories/GHSA-rm48-9mqf-8jc3 CVE-2024-41945 - https://github.com/FuelLabs/fuels-ts/security/advisories/GHSA-3jcg-vx7f-j6qf +CVE-2024-41954 - https://github.com/FOGProject/fogproject/security/advisories/GHSA-pcqm-h8cx-282c CVE-2024-41955 - https://github.com/MobSF/Mobile-Security-Framework-MobSF/security/advisories/GHSA-8m9j-2f32-2vx4 CVE-2024-41957 - https://github.com/vim/vim/security/advisories/GHSA-f9cr-gv85-hcr4 CVE-2024-41965 - https://github.com/vim/vim/security/advisories/GHSA-46pw-v7qw-xc2f @@ -99368,7 +99545,9 @@ CVE-2024-42349 - https://github.com/FOGProject/fogproject/security/advisories/GH CVE-2024-42352 - https://github.com/nuxt/icon/security/advisories/GHSA-cxgv-px37-4mp2 CVE-2024-42358 - https://github.com/michaelrsweet/pdfio/security/advisories/GHSA-4hh9-j68x-8353 CVE-2024-4236 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AX/AX1803/formSetSysToolDDNS.md +CVE-2024-42365 - https://github.com/asterisk/asterisk/security/advisories/GHSA-c4cg-9275-6w44 CVE-2024-4237 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AX/AX1806/R7WebsSecurityHandler.md +CVE-2024-42370 - https://github.com/litestar-org/litestar/security/advisories/GHSA-4hq2-rpgc-r8r7 CVE-2024-4238 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AX/AX1806/formSetDeviceName_devName.md CVE-2024-4239 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/AX/AX1806/formSetRebootTimer.md CVE-2024-4240 - https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/W9/formQosManageDouble_auto.md @@ -99397,6 +99576,8 @@ CVE-2024-4291 - https://github.com/L1ziang/Vulnerability/blob/main/formAddMacfil CVE-2024-4293 - https://github.com/Sospiro014/zday1/blob/main/doctor_appointment_management_system_xss.md CVE-2024-4294 - https://github.com/Sospiro014/zday1/blob/main/doctor_appointment_management_system_idor.md CVE-2024-4305 - https://wpscan.com/vulnerability/635be98d-4c17-4e75-871f-9794d85a2eb1/ +CVE-2024-43167 - https://github.com/NLnetLabs/unbound/issues/1072 +CVE-2024-43168 - https://github.com/NLnetLabs/unbound/issues/1039 CVE-2024-4340 - https://github.com/advisories/GHSA-2m57-hf25-phgg CVE-2024-4340 - https://research.jfrog.com/vulnerabilities/sqlparse-stack-exhaustion-dos-jfsa-2024-001031292/ CVE-2024-4348 - https://vuldb.com/?submit.320855 @@ -99438,6 +99619,9 @@ CVE-2024-4542 - https://wpscan.com/vulnerability/9eef8b29-2c62-4daa-ae90-467ff9b CVE-2024-4547 - https://www.tenable.com/security/research/tra-2024-13 CVE-2024-4548 - https://www.tenable.com/security/research/tra-2024-13 CVE-2024-4549 - https://www.tenable.com/security/research/tra-2024-13 +CVE-2024-4558 - http://seclists.org/fulldisclosure/2024/Jul/15 +CVE-2024-4558 - http://seclists.org/fulldisclosure/2024/Jul/16 +CVE-2024-4558 - http://seclists.org/fulldisclosure/2024/Jul/18 CVE-2024-4565 - https://wpscan.com/vulnerability/430224c4-d6e3-4ca8-b1bc-b2229a9bcf12/ CVE-2024-4577 - https://arstechnica.com/security/2024/06/php-vulnerability-allows-attackers-to-run-malicious-code-on-windows-servers/ CVE-2024-4577 - https://cert.be/en/advisory/warning-php-remote-code-execution-patch-immediately @@ -99609,6 +99793,7 @@ CVE-2024-5145 - https://github.com/CveSecLook/cve/issues/38CVE-2005-1275 CVE-2024-5145 - https://github.com/CveSecLook/cve/issues/38CVE-2020-7009 CVE-2024-5151 - https://wpscan.com/vulnerability/1ede4c66-9932-4ba6-bba1-0ba13f5a2f8f/ CVE-2024-5155 - https://wpscan.com/vulnerability/f1e90a8a-d959-4316-a5d4-e183854944bd/ +CVE-2024-5159 - https://issues.chromium.org/issues/335613092 CVE-2024-5167 - https://wpscan.com/vulnerability/67bb5ab8-4493-4f5b-a989-41576675b61a/ CVE-2024-5169 - https://wpscan.com/vulnerability/f0de62e3-5e85-43f3-8e3e-e816dafb1406/ CVE-2024-5172 - https://wpscan.com/vulnerability/65d84e69-0548-4c7d-bcde-5777d72da555/ @@ -99731,6 +99916,7 @@ CVE-2024-5811 - https://wpscan.com/vulnerability/bf6c2e28-51ef-443b-b1c2-d555c7e CVE-2024-5851 - https://vuldb.com/?submit.347385 CVE-2024-5882 - https://wpscan.com/vulnerability/5e8d7808-8f3e-4fc9-a1e7-e108da031ca7/ CVE-2024-5883 - https://wpscan.com/vulnerability/a1894884-c739-4ef4-8d9c-392171ab3d68/ +CVE-2024-5893 - https://github.com/Hefei-Coffee/cve/blob/main/sql9.md CVE-2024-5894 - https://github.com/Hefei-Coffee/cve/blob/main/sql10.md CVE-2024-5895 - https://github.com/Hefei-Coffee/cve/blob/main/sql11.md CVE-2024-5896 - https://github.com/Hefei-Coffee/cve/blob/main/sql12.md @@ -99774,6 +99960,7 @@ CVE-2024-6114 - https://github.com/wangyuan-ui/CVE/issues/4 CVE-2024-6127 - https://vulncheck.com/advisories/empire-unauth-rce CVE-2024-6130 - https://wpscan.com/vulnerability/bbed2968-4bd6-49ae-bd61-8a1f751e7041/ CVE-2024-6133 - https://wpscan.com/vulnerability/fd613e1e-557c-4383-a3e9-4c14bc0be0c5/ +CVE-2024-6134 - https://wpscan.com/vulnerability/34d61f7e-90eb-4a64-a8a7-18f2d6518118/ CVE-2024-6136 - https://wpscan.com/vulnerability/7d85cfe4-4878-4530-ba78-7cfe33f3a8d5/ CVE-2024-6138 - https://wpscan.com/vulnerability/9ef2a8d8-39d5-45d3-95de-e7bac4b7382d/ CVE-2024-6158 - https://wpscan.com/vulnerability/8adb219f-f0a6-4e87-8626-db26e300c220/ @@ -99809,6 +99996,8 @@ CVE-2024-6334 - https://wpscan.com/vulnerability/6c09083c-6960-4369-8c5c-ad20e34 CVE-2024-6362 - https://wpscan.com/vulnerability/d2e2d06b-0f07-40b9-9b87-3373f62ae1a9/ CVE-2024-6366 - https://wpscan.com/vulnerability/5b90cbdd-52cc-4e7b-bf39-bea0dd59e19e/ CVE-2024-6373 - https://github.com/Abyssun/abyssun-/issues/1 +CVE-2024-6387 - http://seclists.org/fulldisclosure/2024/Jul/18 +CVE-2024-6387 - http://seclists.org/fulldisclosure/2024/Jul/19 CVE-2024-6387 - http://www.openwall.com/lists/oss-security/2024/07/03/5 CVE-2024-6387 - http://www.openwall.com/lists/oss-security/2024/07/28/2 CVE-2024-6387 - https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server