Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-01-20 CVE-2025-0579 A vulnerability was found in Shiprocket Module 3/4 on OpenCart.
network
low complexity
CWE-74
7.3
7.3
2025-01-20 CVE-2025-0580 A vulnerability was found in Shiprocket Module 3 on OpenCart.
network
high complexity
CWE-863
5.6
5.6
2025-01-20 CVE-2025-0581 A vulnerability classified as problematic has been found in CampCodes School Management Software 1.0.
network
low complexity
CWE-94
3.5
3.5
2025-01-20 CVE-2025-0582 A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0.
network
low complexity
CWE-434
4.7
4.7
2025-01-20 CVE-2025-0584 The a+HRD from aEnrich Technology has a Server-side Request Forgery, allowing unauthenticated remote attackers to exploit this vulnerability to probe internal network.
network
low complexity
CWE-918
5.3
5.3
2025-01-20 CVE-2025-0585 The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
network
low complexity
CWE-89
critical
 9.8
9.8
2025-01-20 CVE-2025-0586 The a+HRD from aEnrich Technology has an Insecure Deserialization vulnerability, allowing remote attackers with database modification privileges and regular system privileges to perform arbitrary code execution.
network
low complexity
CWE-502
7.2
7.2
2025-01-20 CVE-2025-0578 A vulnerability was found in Facile Sistemas Cloud Apps up to 20250107.
network
low complexity
CWE-94
3.5
3.5
2025-01-20 CVE-2025-0583 The a+HRD from aEnrich Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.
network
low complexity
CWE-79
6.1
6.1
2025-01-20 CVE-2025-0576 A vulnerability was found in Mobotix M15 4.3.4.83 and classified as problematic.
network
low complexity
CWE-94
4.3
4.3