Total
1252 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-24741 | 1 Logon | 1 Kb Support | 2025-02-10 | N/A | 4.7 MEDIUM |
| URL Redirection to Untrusted Site ('Open Redirect') vulnerability in KB Support KB Support. This issue affects KB Support: from n/a through 1.6.7. | |||||
| CVE-2022-46886 | 1 Servicenow | 1 Servicenow | 2025-02-06 | N/A | 5.5 MEDIUM |
| There exists an open redirect within the response list update functionality of ServiceNow. This allows attackers to redirect users to arbitrary domains when clicking on a URL within a service-now domain. | |||||
| CVE-2024-38485 | 1 Dell | 1 Elastic Cloud Storage | 2025-02-04 | N/A | 4.3 MEDIUM |
| Dell ECS, versions prior to 3.8.0, contain(s) a Host Header Injection Vulnerability. A remote low-privileged attacker could potentially exploit this vulnerability to trigger redirections that leads to sensitive information leakage. | |||||
| CVE-2024-54728 | 2025-02-03 | N/A | 6.5 MEDIUM | ||
| Incorrect access control in BYD QIN PLUS DM-i Dilink OS 3.0_13.1.7.2204050.1 allows unauthorized attackers to access system logcat logs. | |||||
| CVE-2020-21038 | 1 Typecho | 1 Typecho | 2025-01-29 | N/A | 6.1 MEDIUM |
| Open redirect vulnerability in typecho 1.1-17.10.30-release via the referer parameter to Login.php. | |||||
| CVE-2024-56972 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Midea Group Co., Ltd Midea Home iOS 9.3.12 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56971 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Zhiyuan Yuedu (Guangzhou) Literature Information Technology Co., Ltd Shuqi Novel iOS 5.3.8 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56969 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Pixocial Technology (Singapore) Pte. Ltd BeautyPlus iOS 7.8.010 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56968 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Shenzhen Intellirocks Tech Co. Ltd Govee Home iOS 6.5.01 allows attackers to access sensitive user information via supplying a crafted payload. | |||||
| CVE-2024-56967 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Cloud Whale Interactive Technology LLC. PolyBuzz iOS 2.0.20 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56966 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Shanghai Xuan Ting Entertainment Information & Technology Co., Ltd Qidian Reader iOS 5.9.384 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56965 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Shanghai Shizhi Information Technology Co., Ltd Shihuo iOS 8.16.0 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56964 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Che Hao Duo Used Automobile Agency (Beijing) Co., Ltd Guazi Used Car iOS 10.15.1 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56963 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Beijing Sogou Technology Development Co., Ltd Sogou Input iOS 12.2.0 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56962 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Tencent Technology (Shanghai) Co., Ltd WeSing iOS v9.3.39 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56960 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Tianjin Xiaowu Information technology Co., Ltd BeiKe Holdings iOS 1.3.50 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56959 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Mashang Consumer Finance Co., Ltd Anyihua iOS 3.6.2 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56957 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Kingsoft Office Software Corporation Limited WPS Office iOS 12.20.0 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56955 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Tencent Technology (Shenzhen) Company Limited QQMail iOS 6.6.4 allows attackers to access sensitive user information via supplying a crafted link. | |||||
| CVE-2024-56954 | 2025-01-28 | N/A | 6.5 MEDIUM | ||
| An issue in Beijing Baidu Netcom Science & Technology Co Ltd Haokan Video iOS 7.70.0 allows attackers to access sensitive user information via supplying a crafted link. | |||||