Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2024
CVE-2024-30927
Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the racer-results.php component.
CVSS Score
6.3
EPSS Score
0.001
Published
2024-04-18
CVE-2024-30928
SQL Injection vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary SQL commands via 'classids' Parameter in ajax/query.slide.next.inc
CVSS Score
8.1
EPSS Score
0.002
Published
2024-04-18
CVE-2024-30929
Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the 'back' Parameter in playlist.php
CVSS Score
8.0
EPSS Score
0.002
Published
2024-04-18
CVE-2024-30920
Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows a remote attacker to execute arbitrary code via the render-document.php component.
CVSS Score
7.4
EPSS Score
0.003
Published
2024-04-18
CVE-2024-30921
Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows a remote attacker to execute arbitrary code via the photo.php component.
CVSS Score
5.4
EPSS Score
0.003
Published
2024-04-18
CVE-2024-30922
SQL Injection vulnerability in DerbyNet v9.0 allows a remote attacker to execute arbitrary code via the where Clause in Award Document Rendering.
CVSS Score
9.8
EPSS Score
0.019
Published
2024-04-18
CVE-2024-30923
SQL Injection vulnerability in DerbyNet v9.0 and below allows a remote attacker to execute arbitrary code via the where Clause in Racer Document Rendering
CVSS Score
9.8
EPSS Score
0.019
Published
2024-04-18
CVE-2024-20380
A vulnerability in the HTML parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to an issue in the C to Rust foreign function interface. An attacker could exploit this vulnerability by submitting a crafted file containing HTML content to be scanned by ClamAV on an affected device. An exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software.
CVSS Score
7.5
EPSS Score
0.005
Published
2024-04-18
CVE-2024-29986
Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability
CVSS Score
5.4
EPSS Score
0.001
Published
2024-04-18
CVE-2024-29987
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.002
Published
2024-04-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved