2024 CVE Vulnerabilities
No CVEs published in 2024.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2024-41984 | LOW | 2.1 | 0.2% | Aug 12, 2025 | A vulnerability has been identified in SmartClient modules Opcenter QL Home (SC) (All versions >= V13.2 < V2506), SOA Au... |
| CVE-2024-41980 | LOW | 2 | 0.1% | Aug 12, 2025 | A vulnerability has been identified in SmartClient modules Opcenter QL Home (SC) (All versions >= V13.2 < V2506), SOA Au... |
| CVE-2024-8244 | LOW | 3.7 | 0.2% | Aug 6, 2025 | The filepath.Walk and filepath.WalkDir functions are documented as not following symbolic links, but both functions are ... |
| CVE-2024-13978 | LOW | 2 | 0.2% | Aug 1, 2025 | A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by this vulnerability is... |
| CVE-2024-42209 | LOW | 3.5 | 0.2% | Jul 17, 2025 | HCL Connections is vulnerable to an information disclosure vulnerability that could allow a user to obtain sensitive inf... |
| CVE-2024-47065 | LOW | 2.7 | 0.2% | Jul 11, 2025 | Meshtastic is an open source mesh networking solution. Prior to 2.5.1, traceroute responses from the remote node are not... |
| CVE-2024-36349 | LOW | 3.8 | 0.2% | Jul 8, 2025 | A transient execution vulnerability in some AMD processors may allow a user process to infer TSC_AUX even when such a re... |
| CVE-2024-36348 | LOW | 3.8 | 0.3% | Jul 8, 2025 | A transient execution vulnerability in some AMD processors may allow a user process to infer the control registers specu... |
| CVE-2024-58117 | LOW | 3.3 | 0.1% | Jul 7, 2025 | Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerabil... |
| CVE-2024-38823 | LOW | 2.7 | 0.2% | Jun 13, 2025 | Salt's request server is vulnerable to replay attacks when not using a TLS encrypted transport. |
| CVE-2024-38822 | LOW | 2.7 | 0.2% | Jun 13, 2025 | Multiple methods in the salt master skip minion token validation. Therefore a misbehaving minion can impersonate another... |
| CVE-2024-50406 | LOW | 2 | 0.2% | Jun 6, 2025 | A cross-site scripting (XSS) vulnerability has been reported to affect License Center. If exploited, the vulnerability c... |
| CVE-2024-13087 | LOW | 2.4 | 0.6% | Jun 6, 2025 | A command injection vulnerability has been reported to affect QHora. If an attacker gains local network access who have ... |
| CVE-2024-7762 | LOW | 3.7 | 0.3% | May 15, 2025 | The Simple Job Board WordPress plugin before 2.12.6 does not prevent uploaded files from being listed, allowing unauthen... |
| CVE-2024-6711 | LOW | 3.5 | 0.3% | May 15, 2025 | The Event Tickets with Ticket Scanner WordPress plugin before 2.3.8 does not sanitise and escape some parameters, which ... |
| CVE-2024-4091 | LOW | 3.5 | 0.3% | May 15, 2025 | The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which coul... |
| CVE-2024-4004 | LOW | 3.5 | 0.3% | May 15, 2025 | The Advanced Cron Manager WordPress plugin before 2.5.7 does not sanitise and escape some of its settings, which could ... |
| CVE-2024-4002 | LOW | 3.5 | 0.3% | May 15, 2025 | The Carousel, Slider, Gallery by WP Carousel WordPress plugin before 2.6.9 does not sanitise and escape some of its set... |
| CVE-2024-3996 | LOW | 3.5 | 0.3% | May 15, 2025 | The Smart Post Show WordPress plugin before 2.4.28 does not sanitise and escape some of its settings, which could allow... |
| CVE-2024-12767 | LOW | 3.5 | 0.3% | May 15, 2025 | The buddyboss-platform WordPress plugin before 2.7.60 lacks proper access controls and allows a logged-in user to view c... |
| CVE-2024-11140 | LOW | 3.5 | 0.3% | May 15, 2025 | The Real WP Shop Lite Ajax eCommerce Shopping Cart WordPress plugin through 2.0.8 does not sanitise and escape some of i... |
| CVE-2024-10098 | LOW | 2.7 | 0.3% | May 15, 2025 | The ApplyOnline WordPress plugin before 2.6.3 does not protect uploaded files during the application process, allowing ... |
| CVE-2024-12533 | LOW | 3.3 | 0.1% | May 13, 2025 | Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore Technology 4 allows Input Data ... |
| CVE-2024-55651 | LOW | 2 | 0.2% | May 8, 2025 | i-Educar is free, fully online school management software. Version 2.9 of the application fails to properly validate and... |
| CVE-2024-51991 | LOW | 1.1 | 0.3% | May 5, 2025 | October is a Content Management System (CMS) and web platform. A vulnerability in versions prior to 3.7.5 affects authen... |
Check if your code is affected by 2024 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now