| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-47167 | SSRF in the path parameter of /queue/join in Gradio | gradio-app | gradio | - | - | 2024-10-10 21:47:29 | Deep Dive |
| CVE-2024-47168 | The `enable_monitoring` flag set to `False` does not disable monitoring in Gradio | gradio-app | gradio | - | - | 2024-10-10 21:44:51 | Deep Dive |
| CVE-2024-9473 | GlobalProtect App: Local Privilege Escalation (PE) Vulnerability | Palo Alto Networks | GlobalProtect App | - | - | 2024-10-09 17:07:01 | Deep Dive |
| CVE-2024-47349 | WordPress WPMobile.App plugin <= 11.50 - Reflected Cross Site Scripting (XSS) vulnerability | Amauri | WPMobile.App | High | 7.1 | 2024-10-06 10:26:56 | Deep Dive |
| CVE-2024-25694 | BUG-000163019 - Stored XSS in Portal for ArcGIS | Esri | Enterprise Web App Builder | Medium | 4.8 | 2024-10-04 17:17:59 | Deep Dive |
| CVE-2024-25702 | BUG-000160599 - Stored XSS in Portal for ArcGIS Web App Builder | Esri | ArcGIS Enterprise Web App Builder | Medium | 4.8 | 2024-10-04 17:17:13 | Deep Dive |
| CVE-2024-8967 | PWA — easy way to Progressive Web App <= 1.6.3 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | iworks | PWA — easy way to Progressive Web App | Medium | 6.4 | 2024-10-02 07:35:26 | Deep Dive |
| CVE-2024-42496 | Smart-tab 安全漏洞 | TECHNO SUPPORT COMPANY | Smart-tab Android app | 低危 | - | 2024-09-30 07:51:06 | Deep Dive |
| CVE-2024-41999 | Smart-tab 安全漏洞 | TECHNO SUPPORT COMPANY | Smart-tab Android app | 中危 | - | 2024-09-30 07:50:35 | Deep Dive |
| CVE-2024-9320 | SourceCodester Online Timesheet App Add Timesheet Form add-timesheet.php cross site scripting | SourceCodester | Online Timesheet App | Low | 3.5 | 2024-09-29 00:00:07 | Deep Dive |
| CVE-2024-9319 | SourceCodester Online Timesheet App delete-timesheet.php sql injection | SourceCodester | Online Timesheet App | Medium | 6.3 | 2024-09-28 23:31:05 | Deep Dive |
| CVE-2024-7426 | Community by PeepSo – Social Network, Membership, Registration, User Profiles <= 6.4.6.0 - Unauthenticated Full Path Disclosure | peepso | Community by PeepSo – Download from PeepSo.com | Medium | 5.3 | 2024-09-25 02:05:05 | Deep Dive |
| CVE-2024-46984 | XML External Entity Reference (XXE) vulnerability can lead to a Server Side Request Forgery attack in gematik app-referencevalidator | gematik | app-referencevalidator | High | 8.6 | 2024-09-19 22:38:21 | Deep Dive |
| CVE-2024-7890 | Local privilege escalation allows a low-privileged user to gain SYSTEM privileges | Citrix | Citrix Workspace app for Windows | - | - | 2024-09-11 22:32:17 | Deep Dive |
| CVE-2024-7889 | Local privilege escalation allows a low-privileged user to gain SYSTEM privileges | Citrix | Citrix Workspace app for Windows | - | - | 2024-09-11 22:16:41 | Deep Dive |
| CVE-2024-8687 | PAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes | Palo Alto Networks | PAN-OS | - | - | 2024-09-11 16:40:21 | Deep Dive |
| CVE-2024-7618 | Community by PeepSo – Social Network, Membership, Registration, User Profiles <= 6.4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via content Parameter | peepso | Community by PeepSo – Download from PeepSo.com | Medium | 4.4 | 2024-09-10 07:30:04 | Deep Dive |
| CVE-2024-7655 | Community by PeepSo – Social Network, Membership, Registration, User Profiles <= 6.4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting | peepso | Community by PeepSo – Download from PeepSo.com | Medium | 4.4 | 2024-09-10 07:30:04 | Deep Dive |
| CVE-2024-45203 | iStyle @cosme 安全漏洞 | istyle Inc. | "@cosme" App for Android | - | - | 2024-09-09 06:42:31 | Deep Dive |
| CVE-2024-41918 | Rakuten Ichiba 安全漏洞 | Rakuten Group, Inc. | 'Rakuten Ichiba App' for Android | - | - | 2024-08-29 02:47:19 | Deep Dive |