Vulnerability & Exploit Database

Wowza Streaming Engine: CVE-2024-52053: Unauthenticated Client-side JavaScript Injection

PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in PAN-OS Enables Impersonation of a Legitimate Administrator

FreeBSD: VID-1EB4D32C-A245-11EF-998C-2CF05DA270F3 (CVE-2024-8648): Gitlab -- vulnerabilities

FreeBSD: VID-574F7BC9-A141-11EF-84E9-901B0E9408DC (CVE-2024-50336): Matrix clients -- mxc uri validation in js sdk

IBM WebSphere Application Server: CVE-2024-45087: IBM WebSphere Application Server is vulnerable to cross-site scripting (CVE-2024-45087)

Pyload RCE (CVE-2024-39205) with js2py sandbox escape (CVE-2024-28397)

IBM WebSphere Application Server: CVE-2024-45071: IBM WebSphere Application Server is vulnerable to stored cross-site scripting (CVE-2024-45071)

Foxit Reader: Use After Free (CVE-2024-28888)

Debian: CVE-2024-9394: firefox-esr, thunderbird -- security update

Ubuntu: USN-7056-1 (CVE-2024-9394): Firefox vulnerabilities

Rocky Linux: CVE-2024-9393: firefox (Multiple Advisories)

Alma Linux: CVE-2024-9394: Important: thunderbird security update (Multiple Advisories)

Alma Linux: CVE-2024-9393: Important: thunderbird security update (Multiple Advisories)

Amazon Linux AMI 2: CVE-2024-9394: Security patch for firefox, thunderbird (Multiple Advisories)

Rocky Linux: CVE-2024-9394: firefox (Multiple Advisories)

Amazon Linux AMI 2: CVE-2024-9393: Security patch for firefox, thunderbird (Multiple Advisories)

Debian: CVE-2024-9393: firefox-esr, thunderbird -- security update

Oracle Linux: CVE-2024-9394: ELSA-2024-7505: firefox security update (IMPORTANT) (Multiple Advisories)

Ubuntu: USN-7056-1 (CVE-2024-9393): Firefox vulnerabilities

Red Hat: CVE-2024-9393: firefox: thunderbird: Cross-origin access to PDF contents through multipart responses (Multiple Advisories)