Tutto

Popolare

CVE

Ultimo

CVE-2024-40433 | Tencent WeChat 8.0.37 web-view permission

di | Lug 27, 2024

A vulnerability was found in Tencent WeChat 8.0.37. It has been rated as critical. Affected by this issue is some unknown functionality of the component web-view. The manipulation leads to permission issues. This vulnerability is handled as CVE-2024-40433. The attack can only be done within the local network. There is no exploit...

Sicurezza

Ultimo
Spiacenti, nessun post trovato

Tutto

Ultimo

CVE-2024-41120 | opengeos streamlit-geospatial 9_ gpd.read_file url server-side request forgery (GHSL-2024-100)

di | Lug 27, 2024 |

A vulnerability was found in opengeos streamlit-geospatial. It has been declared as critical. Affected by this vulnerability is the function gpd.read_file of the file pages/9_????_Vector_Data_Visualization.py. The manipulation of the argument url leads to server-side request forgery. This vulnerability is known as CVE-2024-41120. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this...

Per saperne di più

CVE-2024-41118 | opengeos streamlit-geospatial 7_ get_layers url server-side request forgery (GHSL-2024-100)

di | Lug 27, 2024 |

A vulnerability was found in opengeos streamlit-geospatial. It has been classified as critical. Affected is the function get_layers of the file pages/7_????_Web_Map_Service.py. The manipulation of the argument url leads to server-side request forgery. This vulnerability is traded as CVE-2024-41118. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this...

Per saperne di più
Caricamento