diff --git a/CVE-2024/CVE-2024-53xx/CVE-2024-5368.json b/CVE-2024/CVE-2024-53xx/CVE-2024-5368.json new file mode 100644 index 00000000000..b7249cdd88d --- /dev/null +++ b/CVE-2024/CVE-2024-53xx/CVE-2024-5368.json @@ -0,0 +1,92 @@ +{ + "id": "CVE-2024-5368", + "sourceIdentifier": "cna@vuldb.com", + "published": "2024-05-26T16:15:08.367", + "lastModified": "2024-05-26T16:15:08.367", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability was found in Kashipara College Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file delete_faculty.php. The manipulation of the argument id leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-266280." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 3.5, + "baseSeverity": "LOW" + }, + "exploitabilityScore": 2.1, + "impactScore": 1.4 + } + ], + "cvssMetricV2": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", + "accessVector": "NETWORK", + "accessComplexity": "LOW", + "authentication": "SINGLE", + "confidentialityImpact": "NONE", + "integrityImpact": "PARTIAL", + "availabilityImpact": "NONE", + "baseScore": 4.0 + }, + "baseSeverity": "MEDIUM", + "exploitabilityScore": 8.0, + "impactScore": 2.9, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false + } + ] + }, + "weaknesses": [ + { + "source": "cna@vuldb.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/E1CHO/cve_hub/blob/main/College%20Management%20System%20-%20xss/College%20Management%20System%20-%20vuln%202.pdf", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.266280", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?id.266280", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?submit.343448", + "source": "cna@vuldb.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-53xx/CVE-2024-5369.json b/CVE-2024/CVE-2024-53xx/CVE-2024-5369.json new file mode 100644 index 00000000000..0f0f1e189a7 --- /dev/null +++ b/CVE-2024/CVE-2024-53xx/CVE-2024-5369.json @@ -0,0 +1,92 @@ +{ + "id": "CVE-2024-5369", + "sourceIdentifier": "cna@vuldb.com", + "published": "2024-05-26T17:15:21.760", + "lastModified": "2024-05-26T17:15:21.760", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability was found in Kashipara College Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file submit_admin.php. The manipulation of the argument admin_name leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-266281 was assigned to this vulnerability." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 3.5, + "baseSeverity": "LOW" + }, + "exploitabilityScore": 2.1, + "impactScore": 1.4 + } + ], + "cvssMetricV2": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", + "accessVector": "NETWORK", + "accessComplexity": "LOW", + "authentication": "SINGLE", + "confidentialityImpact": "NONE", + "integrityImpact": "PARTIAL", + "availabilityImpact": "NONE", + "baseScore": 4.0 + }, + "baseSeverity": "MEDIUM", + "exploitabilityScore": 8.0, + "impactScore": 2.9, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false + } + ] + }, + "weaknesses": [ + { + "source": "cna@vuldb.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/E1CHO/cve_hub/blob/main/College%20Management%20System%20-%20xss/College%20Management%20System%20-%20vuln%203.pdf", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.266281", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?id.266281", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?submit.343449", + "source": "cna@vuldb.com" + } + ] +} \ No newline at end of file diff --git a/README.md b/README.md index 47fc8a707e6..d757f9f9f07 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-05-26T16:00:38.107899+00:00 +2024-05-26T18:00:37.329792+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-05-26T15:15:08.010000+00:00 +2024-05-26T17:15:21.760000+00:00 ``` ### Last Data Feed Release @@ -33,24 +33,15 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### Total Number of included CVEs ```plain -251806 +251808 ``` ### CVEs added in the last Commit -Recently added CVEs: `11` +Recently added CVEs: `2` -- [CVE-2024-29215](CVE-2024/CVE-2024-292xx/CVE-2024-29215.json) (`2024-05-26T14:15:08.627`) -- [CVE-2024-31859](CVE-2024/CVE-2024-318xx/CVE-2024-31859.json) (`2024-05-26T14:15:08.907`) -- [CVE-2024-32045](CVE-2024/CVE-2024-320xx/CVE-2024-32045.json) (`2024-05-26T14:15:09.137`) -- [CVE-2024-34029](CVE-2024/CVE-2024-340xx/CVE-2024-34029.json) (`2024-05-26T14:15:09.367`) -- [CVE-2024-34152](CVE-2024/CVE-2024-341xx/CVE-2024-34152.json) (`2024-05-26T14:15:09.607`) -- [CVE-2024-36241](CVE-2024/CVE-2024-362xx/CVE-2024-36241.json) (`2024-05-26T14:15:09.830`) -- [CVE-2024-36255](CVE-2024/CVE-2024-362xx/CVE-2024-36255.json) (`2024-05-26T14:15:10.060`) -- [CVE-2024-5270](CVE-2024/CVE-2024-52xx/CVE-2024-5270.json) (`2024-05-26T14:15:10.303`) -- [CVE-2024-5272](CVE-2024/CVE-2024-52xx/CVE-2024-5272.json) (`2024-05-26T14:15:10.537`) -- [CVE-2024-5366](CVE-2024/CVE-2024-53xx/CVE-2024-5366.json) (`2024-05-26T14:15:10.773`) -- [CVE-2024-5367](CVE-2024/CVE-2024-53xx/CVE-2024-5367.json) (`2024-05-26T15:15:08.010`) +- [CVE-2024-5368](CVE-2024/CVE-2024-53xx/CVE-2024-5368.json) (`2024-05-26T16:15:08.367`) +- [CVE-2024-5369](CVE-2024/CVE-2024-53xx/CVE-2024-5369.json) (`2024-05-26T17:15:21.760`) ### CVEs modified in the last Commit diff --git a/_state.csv b/_state.csv index d8508f494af..54ab69e1d2a 100644 --- a/_state.csv +++ b/_state.csv @@ -247308,7 +247308,7 @@ CVE-2024-29209,0,0,730a58a4d5c988d39296847a3cbeffaf8f223ddfb7528cfe72b7ecd7120d8 CVE-2024-2921,0,0,6f7f3b512cf8e7465b0aea1823cce56bf608a3c1f40869feddab084c3da126e6,2024-04-09T19:15:38.423000 CVE-2024-29210,0,0,85808d5cecba10d151fe0b578de53dfd10c6954e5c1065c0884a7236754d3536,2024-05-07T20:07:58.737000 CVE-2024-29212,0,0,d1e1de4d046d49a4c2bf3e09127e1c6209af5babbac4af0414d2fd71b11411e7,2024-05-14T16:13:02.773000 -CVE-2024-29215,1,1,d4de48bbe85fe728564dbecdb3456206d1e1de6e3bb0987758ad2586b2b1f82b,2024-05-26T14:15:08.627000 +CVE-2024-29215,0,0,d4de48bbe85fe728564dbecdb3456206d1e1de6e3bb0987758ad2586b2b1f82b,2024-05-26T14:15:08.627000 CVE-2024-29216,0,0,59c06798795d05e391cdd301154441d31362295e800c3b46a2b7bd83a3e2dbc0,2024-03-25T13:47:14.087000 CVE-2024-29217,0,0,692aac671426b5dcedcd56fb24933db6c5a96f7af1aee50fe065d75a9d19b5cb,2024-05-01T17:15:31.350000 CVE-2024-29218,0,0,671653d28334eb1b29de221436a2464edfec5acf42885adc45ca7b102375c361,2024-04-15T13:15:31.997000 @@ -248770,7 +248770,7 @@ CVE-2024-31851,0,0,0e8250a21123e214b1f09f2b325f0d0e22e98cb6715480d7ac13d673f761e CVE-2024-31852,0,0,7a968282e2d23775fda0d6edce03c38caf21ca868b2fca3251339d962c2ec4c6,2024-04-08T18:49:25.863000 CVE-2024-31856,0,0,62a52705b8ee623f45839141fd2c99784658855012cca1de7b4c490712cad657,2024-05-16T13:03:05.353000 CVE-2024-31857,0,0,3e7ac60afeec75094fbcaec8b53e1a238b7bcb05ca078ef7a1edb4dbe4dfc654,2024-04-23T12:52:09.397000 -CVE-2024-31859,1,1,a9224ef7c5c15755d01a9570a09a0e35cfe1fe8999cb37fcf0738d245ab4d436,2024-05-26T14:15:08.907000 +CVE-2024-31859,0,0,a9224ef7c5c15755d01a9570a09a0e35cfe1fe8999cb37fcf0738d245ab4d436,2024-05-26T14:15:08.907000 CVE-2024-31860,0,0,a2cd98cb7498e7c2656edd8e2839918c590dac3d691d82a031a70fae29aab7e2,2024-05-01T18:15:23.393000 CVE-2024-31861,0,0,9373eb863c6ff79969ca8cd07d1a0b13ff0cef9f98ab0a21b4aa070f1acd5bf4,2024-05-01T18:15:23.450000 CVE-2024-31862,0,0,bdbb4b1091af79e6aaf56d41a4760c428dcc1fb171014df01f6909ccda945916,2024-05-01T19:15:26.803000 @@ -248890,7 +248890,7 @@ CVE-2024-3204,0,0,63ff259258a23c104bbaaee6b2cbe6138b30b2ad2d9e95ce2d28e1d0500d80 CVE-2024-32040,0,0,c9e8a9bafebd4e002463be520ee967b3c928ddf4cec6865e7aa23fa1d81b2834,2024-04-23T12:52:26.253000 CVE-2024-32041,0,0,e88f61c8c702a5d00724562a1be23c2ca0fc9ec03e84f95db2dfed035982cfb4,2024-04-23T12:52:26.253000 CVE-2024-32042,0,0,5dfe56871973e211f47062020d55ad1dc7e201605332475bfbb2390642296464,2024-05-16T13:03:05.353000 -CVE-2024-32045,1,1,3757a773847b5ed6c32fb24905f0b5c02d842b84e0e51fc3b349b201665bf927,2024-05-26T14:15:09.137000 +CVE-2024-32045,0,0,3757a773847b5ed6c32fb24905f0b5c02d842b84e0e51fc3b349b201665bf927,2024-05-26T14:15:09.137000 CVE-2024-32046,0,0,3771b70436f95435fc521db21da6fd859bb3ed607b3e6e7edd188445267746f3,2024-04-26T12:58:17.720000 CVE-2024-32047,0,0,f009d59be96ce9fa193a4aa9724cc4cc41ffb33bc61e4f05b98fbbfa91a9068b,2024-05-16T13:03:05.353000 CVE-2024-32049,0,0,d9cad06fbf5a30eecb78b22409f73f445b96767def965004d9fc51455fda8ca6,2024-05-08T17:05:24.083000 @@ -249931,7 +249931,7 @@ CVE-2024-34010,0,0,c31f2f180475c1f3f2204c1feb2010c5ada948eb1b4d37517c54f97316341 CVE-2024-34011,0,0,4e2e0fb5d64e6e75da5ff3561c6f86ff1f891a3646e890e015512c561d328a58,2024-04-30T13:11:16.690000 CVE-2024-34020,0,0,9d9b11f4db84c3770acd92b1150bad9b802c58de4fce781bba37a89c232e029f,2024-04-30T13:11:16.690000 CVE-2024-34025,0,0,7910ed3f49f27cc3d6e29efd0456c14b8fa97ed1ac57b4183c41d497d3215ba0,2024-05-16T13:03:05.353000 -CVE-2024-34029,1,1,2766232a3d515f8b1c1f87ce2ed2db8db2f05801e0839444f494f83697e6893a,2024-05-26T14:15:09.367000 +CVE-2024-34029,0,0,2766232a3d515f8b1c1f87ce2ed2db8db2f05801e0839444f494f83697e6893a,2024-05-26T14:15:09.367000 CVE-2024-3403,0,0,351b7361a62b75fa01065ca2b4d00dead5236a2356f9f11be8885ee6cd82884b,2024-05-16T13:03:05.353000 CVE-2024-34031,0,0,32832cbb1e8c12d82b1b4f0b17dd8da5298483e844da3b9dfde76f943f816f64,2024-05-03T12:50:34.250000 CVE-2024-34032,0,0,5a4c84545c086e02a753cbdc2a69955417aff416961e34fcc07fc6e9fddc4770,2024-05-03T12:50:34.250000 @@ -249997,7 +249997,7 @@ CVE-2024-34147,0,0,e0a814855e823888678c4e878d4a98078e68f5a44e971780a8b8967489334 CVE-2024-34148,0,0,a6587625a566b5b3fa150870642dc080066d10cf989bf99d18071766b6756a46,2024-05-02T18:00:37.360000 CVE-2024-34149,0,0,6718ff54c28c47b83499c8438323ca646d2bd3d2cb77ff497c0ecd581cc61196,2024-05-17T02:39:31.800000 CVE-2024-3415,0,0,ac982b4864f8e4a7bf9d1d27366b734c59c6abb888535e3c9066ef082f3066d3,2024-05-17T02:39:54.247000 -CVE-2024-34152,1,1,0d6f5a2558f9abb16be075b9abd3f061a77cf59af37c1d2d165d8856b8f0ab0a,2024-05-26T14:15:09.607000 +CVE-2024-34152,0,0,0d6f5a2558f9abb16be075b9abd3f061a77cf59af37c1d2d165d8856b8f0ab0a,2024-05-26T14:15:09.607000 CVE-2024-3416,0,0,902fa71f7648fc5d95dbb457ec5b1d8086e31612e641f868b70b287a1240502f,2024-05-17T02:39:54.337000 CVE-2024-3417,0,0,3f49bbe41c99ed046acbdc4725681aba971da366489d19dd21d63a9f706d65fb,2024-05-17T02:39:54.430000 CVE-2024-3418,0,0,6fe11edf510894c44abfa3e9b21978e1ec886281690eea4a4d51ab980c487616,2024-05-17T02:39:54.520000 @@ -250797,9 +250797,9 @@ CVE-2024-3621,0,0,3204ec8fd9c2678ba71c374fd9b3e44813b4dc6ba5c30c2d3c2f5f44c3098c CVE-2024-3622,0,0,8a36012169667d948c0b90aa74b5439b232e5ac011c2df4d1ba7f1e8b3410d38,2024-04-26T12:58:17.720000 CVE-2024-3623,0,0,9044a03f32811b426f24d5347da98fbfdb67f97317f2e90baed487a2da0b464c,2024-04-26T12:58:17.720000 CVE-2024-3624,0,0,e0ac19607b4c8d1214127703973418b820b7283270ffca198194137ef8f4191a,2024-04-26T12:58:17.720000 -CVE-2024-36241,1,1,7d422b52e1ca8e5ca2f592f6c52e67e53767600158c54ef0d11c0e9cd8f18e0c,2024-05-26T14:15:09.830000 +CVE-2024-36241,0,0,7d422b52e1ca8e5ca2f592f6c52e67e53767600158c54ef0d11c0e9cd8f18e0c,2024-05-26T14:15:09.830000 CVE-2024-3625,0,0,bb7fa72c43d725aef9f66641f31c3359a614ed8ba414acf9f05b8e44148cef81,2024-04-26T12:58:17.720000 -CVE-2024-36255,1,1,ff75833ef605470f25a737d645a4ed85e8cb8fc67b9530230d1e7d17ee1d1ea1,2024-05-26T14:15:10.060000 +CVE-2024-36255,0,0,ff75833ef605470f25a737d645a4ed85e8cb8fc67b9530230d1e7d17ee1d1ea1,2024-05-26T14:15:10.060000 CVE-2024-3626,0,0,668faec6d18ac8a7c33197af94901aaf7ddac1dec4c77c1d646fba224d5f8541,2024-05-24T01:15:30.977000 CVE-2024-3628,0,0,ad2a38a3d431944b5239dd67ace3bcd2603e3057c8d0a04d847db45516b0c9ea,2024-05-07T13:39:32.710000 CVE-2024-3629,0,0,ed67d1a2dc82a6f7d8e47e5534a14b4493dd33c5e11e4c564b2ef763c111a4ba,2024-05-15T16:40:19.330000 @@ -251764,8 +251764,8 @@ CVE-2024-5246,0,0,a3caa78128bac4a72615dccb481ff335052f3377ab67fd694d7f5fc0532349 CVE-2024-5247,0,0,1e269e58ef46756e33578f4c5df34dcec3de646d04312bef41a8353e3fc1fce7,2024-05-24T01:15:30.977000 CVE-2024-5258,0,0,44dc29bb0ed4f47fbd56a17c4d4592048fc8f73fd8d93b1b1d7d82e5e8477ede,2024-05-24T01:15:30.977000 CVE-2024-5264,0,0,8231398a0715961af60c236587d7e9f037c5bc092ccd3f5680c73ce92c6726b7,2024-05-24T01:15:30.977000 -CVE-2024-5270,1,1,b2f621c3d59939b79ae02919eb8a425b8c9c43ad4981342d1176ba7f73187bdd,2024-05-26T14:15:10.303000 -CVE-2024-5272,1,1,71ec1bc172b10db0e463fcbb4c62143db05c5e3ea5153514f2116a0408d70bdb,2024-05-26T14:15:10.537000 +CVE-2024-5270,0,0,b2f621c3d59939b79ae02919eb8a425b8c9c43ad4981342d1176ba7f73187bdd,2024-05-26T14:15:10.303000 +CVE-2024-5272,0,0,71ec1bc172b10db0e463fcbb4c62143db05c5e3ea5153514f2116a0408d70bdb,2024-05-26T14:15:10.537000 CVE-2024-5273,0,0,a8a92c1acc6189093be594ba3c16513440cf98d0f4ca0c068aee4db7b1549de7,2024-05-24T18:09:20.027000 CVE-2024-5279,0,0,7abaf9b970ce5ec4766fb103e2e56b5d6a0dee4f34f1b248ac92cd3428a82a72,2024-05-24T01:15:30.977000 CVE-2024-5291,0,0,e2fc6f2196c0b027b818fde218df99cf43b38b5676cf49b77deeb1aa303d7e78,2024-05-24T01:15:30.977000 @@ -251803,5 +251803,7 @@ CVE-2024-5362,0,0,1f719bf89adf193a058bcd3fb4dfa58a152e243771f45587b2586f74a3b422 CVE-2024-5363,0,0,1c4b8a783a4990cc7a69f69a871e5bb0879fd479ee79b16e64da69e48dd57172,2024-05-26T12:15:08.353000 CVE-2024-5364,0,0,e537969bdfb6345339b48b4c00a2b452e1565f0e60fd02fb6b0097d4a0eb232b,2024-05-26T13:15:08.380000 CVE-2024-5365,0,0,70b3c437e8b7950cc163bdbadb7706ed3eced9f522fa752b27315af8ad62f703,2024-05-26T13:15:08.653000 -CVE-2024-5366,1,1,bf478e2423ea330984c07fcf6891653c1ec41613dd2091419a99e76a3459beef,2024-05-26T14:15:10.773000 -CVE-2024-5367,1,1,cd319ddccfc2a6b214cf2d698c9b0f989c7d05592c560094a48ee8a65d0168a4,2024-05-26T15:15:08.010000 +CVE-2024-5366,0,0,bf478e2423ea330984c07fcf6891653c1ec41613dd2091419a99e76a3459beef,2024-05-26T14:15:10.773000 +CVE-2024-5367,0,0,cd319ddccfc2a6b214cf2d698c9b0f989c7d05592c560094a48ee8a65d0168a4,2024-05-26T15:15:08.010000 +CVE-2024-5368,1,1,73e825460777a3e62c0a017f586fea2dc5e71098be77ac75e6dcf66080548075,2024-05-26T16:15:08.367000 +CVE-2024-5369,1,1,cb938916fbbaf5d3bfd5dbd91451b9fd0b3f2a81bdcbedbcec51524b9209d366,2024-05-26T17:15:21.760000