CVE-2024-11995

CVE-2024-11995

Título es
CVE-2024-11995

Vie, 29/11/2024 – 21:15

Tipo
CWE-79

Gravedad v2.0
4.00

Gravedad 2.0 Txt
MEDIUM

Título en

CVE-2024-11995

Descripción en
A vulnerability has been found in code-projects Farmacia 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /pagamento.php. The manipulation of the argument total leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

29/11/2024
29/11/2024
Vector CVSS:4.0
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Vector CVSS:3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Vector CVSS:2.0
AV:N/AC:L/Au:S/C:N/I:P/A:N

Gravedad 4.0
5.30

Gravedad 4.0 txt
MEDIUM

Gravedad 3.1 (CVSS 3.1 Base Score)
3.50

Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
LOW

Referencias

  • https://code-projects.org/

  • https://github.com/5p4rk/cve/blob/main/xss.md

  • https://vuldb.com/?ctiid_286411=

  • https://vuldb.com/?id_286411=

  • https://vuldb.com/?submit_453639=

    • Enviar en el boletín
    Off

    CVE-2024-54159

    CVE-2024-54159

    Título es
    CVE-2024-54159

    Vie, 29/11/2024 – 22:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-54159

    Descripción en
    stalld through 1.19.7 allows local users to cause a denial of service (file overwrite) via a /tmp/rtthrottle symlink attack.

    29/11/2024
    29/11/2024
    Vector CVSS:3.1
    CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:L

    Gravedad 3.1 (CVSS 3.1 Base Score)
    4.10

    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    MEDIUM

    Referencias

  • https://cwe.mitre.org/data/definitions/61.html

  • https://security.opensuse.org/2024/11/29/stalld-fixed-tmp-file.html

  • https://www.openwall.com/lists/oss-security/2024/11/29/3

    • Enviar en el boletín
    Off

    CVE-2024-35367

    CVE-2024-35367

    Título es
    CVE-2024-35367

    Vie, 29/11/2024 – 20:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-35367

    Descripción en
    FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_altivec.c, static const vec_s8 h_subpel_filters_outer

    29/11/2024
    29/11/2024
    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias

  • https://gist.github.com/1047524396/9754a44845578358f6a403447c458ca4

  • https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavcodec/ppc/vp8dsp_altivec.c#L53

  • https://github.com/ffmpeg/ffmpeg/commit/09e6840cf7a3ee07a73c3ae88a020bf27ca1a667

    • Enviar en el boletín
    Off

    CVE-2024-35366

    CVE-2024-35366

    Título es
    CVE-2024-35366

    Vie, 29/11/2024 – 20:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-35366

    Descripción en
    FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of sbgdec.c within the libavformat module. When parsing certain options, the software does not adequately validate the input. This allows for negative duration values to be accepted without proper bounds checking.

    29/11/2024
    29/11/2024
    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias

  • https://gist.github.com/1047524396/1e72f170d58c2547ebd4db4cdf6cfabf

  • https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavformat/sbgdec.c#L389

  • https://github.com/ffmpeg/ffmpeg/commit/0bed22d597b78999151e3bde0768b7fe763fc2a6

    • Enviar en el boletín
    Off

    CVE-2024-53506

    CVE-2024-53506

    Título es
    CVE-2024-53506

    Vie, 29/11/2024 – 20:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-53506

    Descripción en
    A SQL injection vulnerability has been identified in Siyuan 3.1.11 via the ids array parameter in /batchGetBlockAttrs.

    29/11/2024
    29/11/2024
    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias

  • https://github.com/siyuan-note/siyuan/issues/13060

  • https://github.com/siyuan-note/siyuan/issues/13077

    • Enviar en el boletín
    Off

    CVE-2024-53505

    CVE-2024-53505

    Título es
    CVE-2024-53505

    Vie, 29/11/2024 – 20:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-53505

    Descripción en
    A SQL injection vulnerability has been identified in Siyuan 3.1.11 via the id parameter at /getAssetContent.

    29/11/2024
    29/11/2024
    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias

  • https://github.com/siyuan-note/siyuan/issues/13059

  • https://github.com/siyuan-note/siyuan/issues/13077

    • Enviar en el boletín
    Off

    CVE-2024-53504

    CVE-2024-53504

    Título es
    CVE-2024-53504

    Vie, 29/11/2024 – 20:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-53504

    Descripción en
    A SQL injection vulnerability has been identified in Siyuan 3.1.11 via the notebook parameter in /searchHistory.

    29/11/2024
    29/11/2024
    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias

  • https://github.com/siyuan-note/siyuan/issues/13058

  • https://github.com/siyuan-note/siyuan/issues/13077

    • Enviar en el boletín
    Off

    CVE-2024-36612

    CVE-2024-36612

    Título es
    CVE-2024-36612

    Vie, 29/11/2024 – 20:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-36612

    Descripción en
    Zulip from 8.0 to 8.3 contains a memory leak vulnerability in the handling of popovers.

    29/11/2024
    29/11/2024
    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias

  • https://gist.github.com/1047524396/f7ff51d24ebbb29e21dfb70a0c97302b

  • https://github.com/zulip/zulip/blob/8.3/web/src/click_handlers.js

  • https://github.com/zulip/zulip/commit/0a90a13becbf0338a8fc1ad37946e51c2c25b0a5

    • Enviar en el boletín
    Off

    CVE-2024-36610

    CVE-2024-36610

    Título es
    CVE-2024-36610

    Vie, 29/11/2024 – 20:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-36610

    Descripción en
    A deserialization vulnerability exists in the Stub class of the VarDumper module in Symfony v7.0.3. The vulnerability stems from deficiencies in the original implementation when handling properties with null or uninitialized values. An attacker could construct specific serialized data and use this vulnerability to execute unauthorized code.

    29/11/2024
    29/11/2024
    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias

  • https://gist.github.com/1047524396/24e93f2905850235e42ad7db6e878bd5

  • https://github.com/symfony/symfony/blob/v7.0.3/src/Symfony/Component/VarDumper/Cloner/Stub.php#L53

  • https://github.com/symfony/symfony/commit/3ffd495bb3cc4d2e24e35b2d83c5b909cab7e259

    • Enviar en el boletín
    Off

    CVE-2024-35371

    CVE-2024-35371

    Título es
    CVE-2024-35371

    Vie, 29/11/2024 – 20:15

    Gravedad 2.0 Txt
    Pendiente de análisis

    Título en

    CVE-2024-35371

    Descripción en
    Ant-Media-Serverv2.8.2 is affected by Improper Output Neutralization for Logs. The vulnerability stems from insufficient input sanitization in the logging mechanism. Without proper filtering or validation, user-controllable data, such as identifiers or other sensitive information, can be included in log entries without restrictions.

    29/11/2024
    29/11/2024
    Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
    Pendiente de análisis

    Referencias

  • https://gist.github.com/1047524396/4eb17867f2e375f4824274c5e7b4d384

  • https://github.com/ant-media/Ant-Media-Server/blob/ams-v2.8.2/src/main/java/io/antmedia/rest/RestServiceBase.java#L356

  • https://github.com/ant-media/ant-media-server/commit/4d4763bd4fd06e515c19544e5170ca0f34c9ce45

    • Enviar en el boletín
    Off