LiquidWorm ABB Cylon Aspect 3.08.03 (webServerDeviceLabelUpdate.php) - File Write DoS
hardware php

LiquidWorm ABB Cylon Aspect 4.00.00 (factorySaved.php) - Unauthenticated XSS
hardware php

LiquidWorm ABB Cylon Aspect 4.00.00 (factorySetSerialNum.php) - Remote Code Execution
hardware php

LiquidWorm ABB Cylon Aspect 3.08.02 - Cross-Site Request Forgery (CSRF)
hardware multiple CVE-2024-48846

m4nb4 Zabbix 7.0.0 - SQL Injection
webapps php CVE-2024-42327

xerosec NagVis 1.9.33 - Arbitrary File Read
webapps php CVE-2022-46945

Ayato Shitomi @ Fore-Z co.ltd Teedy 1.11 - Account Takeover via Stored Cross-Site Scripting (XSS)
webapps multiple CVE-2024-46278

The Kernel Panic Hugging Face Transformers MobileViTV2 4.41.1 - Remote Code Execution (RCE)
remote python CVE-2024-11392

CodeSecLab phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)
webapps php CVE-2022-4407

D3Ext Cacti 1.2.26 - Remote Code Execution (RCE) (Authenticated)
webapps php CVE-2024-25641

LiquidWorm ABB Cylon Aspect 3.08.02 - Cookie User Password Disclosure
hardware multiple CVE-2024-51546

LiquidWorm ABB Cylon Aspect 3.08.03 - Hard-coded Secrets
webapps multiple

LiquidWorm ABB Cylon Aspect 3.08.03 (MapServicesHandler) - Authenticated Reflected XSS
webapps multiple

LiquidWorm ABB Cylon Aspect 3.07.02 (userManagement.php) - Weak Password Policy
hardware multiple CVE-2024-48845

LiquidWorm ABB Cylon Aspect 3.08.03 (CookieDB) - SQL Injection
hardware multiple

LiquidWorm ABB Cylon Aspect 3.08.02 (webServerUpdate.php) - Input Validation Config Poisoning
hardware php