Author: Angelo Barbosa

A vulnerability classified as problematic was found in miraheze CreateWiki. This vulnerability affects unknown code of the file Special:RequestWikiQueue of the component REST API. The manipulation leads to information disclosure. This vulnerability was named CVE-2024-29897. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this...

A vulnerability classified as critical has been found in Tenda FH1202 1.2.0.14(408). This affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument page leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2024-30592. It is possible to initiate the attack remotely. Furthermore, there is an exploit...

A vulnerability was found in ossrs srs up to 5.0.209/6.0.120. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /api/v1/vhosts/vid-. The manipulation of the argument callback leads to cross site scripting. This vulnerability is handled as CVE-2024-29882. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

A vulnerability was found in Kimai up to 2.12.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component API. The manipulation leads to insufficient granularity of access control. This vulnerability is known as CVE-2024-29200. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

A vulnerability was found in veraPDF-library up to 1.24.1. It has been classified as critical. Affected is an unknown function of the component XSL Transform Handler. The manipulation leads to xml injection. This vulnerability is traded as CVE-2024-28109. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected...