Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-08 | CVE-2024-45764 | Unspecified vulnerability in Dell Enterprise Sonic Distribution Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. | 9.8 |
| 2024-11-08 | CVE-2024-45765 | OS Command Injection vulnerability in Dell Enterprise Sonic Distribution Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. | 7.2 |
| 2024-11-08 | CVE-2024-46948 | Unspecified vulnerability in Northern.Tech Mender 3.2.0/3.2.1/3.2.2 Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control. | 4.3 |
| 2024-11-08 | CVE-2024-10325 | Cross-site Scripting vulnerability in Brainstormforce Elementor Header & Footer Builder The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG File uploads in all versions up to, and including, 1.6.45 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-11-08 | CVE-2024-10839 | XXE vulnerability in Zohocorp Manageengine Sharepoint Manager Plus Zohocorp ManageEngine SharePoint Manager Plus versions 4503 and prior are vulnerable to authenticated XML External Entity (XXE) in the Management option. | 8.1 |
| 2024-11-08 | CVE-2024-10187 | Cross-site Scripting vulnerability in Mycred The myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give Points, Ranks, Badges, Cashback, WooCommerce rewards, and WooCommerce credits for Gamification plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's mycred_link shortcode in all versions up to, and including, 2.7.4 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2024-11-08 | CVE-2024-10998 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-08 | CVE-2024-10999 | Unrestricted Upload of File with Dangerous Type vulnerability in Surajkumarvishwakarma Real Estate Management System 1.0 A vulnerability classified as problematic has been found in CodeAstro Real Estate Management System 1.0. | 7.2 |
| 2024-11-08 | CVE-2024-11000 | Unrestricted Upload of File with Dangerous Type vulnerability in Surajkumarvishwakarma Real Estate Management System 1.0 A vulnerability classified as problematic was found in CodeAstro Real Estate Management System 1.0. | 7.2 |
| 2024-11-08 | CVE-2024-24409 | Unspecified vulnerability in Zohocorp Manageengine Admanager Plus Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option. | 8.8 |