Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-21 | CVE-2024-8625 | SQL Injection vulnerability in Total-Soft TS Poll The TS Poll WordPress plugin before 2.4.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks | 7.2 |
| 2024-10-21 | CVE-2024-10200 | Path Traversal vulnerability in Wellchoose Administrative Management System Administrative Management System from Wellchoose has a Path Traversal vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to download arbitrary files on the server. | 7.5 |
| 2024-10-21 | CVE-2024-10201 | Unrestricted Upload of File with Dangerous Type vulnerability in Wellchoose Administrative Management System Administrative Management System from Wellchoose does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload and execute webshells. | 8.8 |
| 2024-10-21 | CVE-2024-10202 | OS Command Injection vulnerability in Wellchoose Administrative Management System Administrative Management System from Wellchoose has an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject and execute arbitrary OS commands. | 8.8 |
| 2024-10-21 | CVE-2024-10198 | Cross-site Scripting vulnerability in Code-Projects Pharmacy Management 1.0 A vulnerability was found in code-projects Pharmacy Management System 1.0. | 4.8 |
| 2024-10-21 | CVE-2024-10199 | Cross-site Scripting vulnerability in Code-Projects Pharmacy Management 1.0 A vulnerability was found in code-projects Pharmacy Management System 1.0. | 4.8 |
| 2024-10-21 | CVE-2024-43689 | Out-of-bounds Write vulnerability in Elecom Wab-I1750-Ps Firmware and Wab-S1167-Ps Firmware Stack-based buffer overflow vulnerability exists in ELECOM wireless access points. | 9.8 |
| 2024-10-21 | CVE-2024-10196 | SQL Injection vulnerability in Code-Projects Pharmacy Management System 1.0 A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. | 9.8 |
| 2024-10-21 | CVE-2024-10197 | Cross-site Scripting vulnerability in Code-Projects Pharmacy Management System 1.0 A vulnerability was found in code-projects Pharmacy Management System 1.0. | 4.8 |
| 2024-10-21 | CVE-2024-49215 | Path Traversal vulnerability in Sangoma Asterisk and Certified Asterisk An issue was discovered in Sangoma Asterisk through 18.20.0, 19.x and 20.x through 20.5.0, and 21.x through 21.0.0, and Certified Asterisk through 18.9-cert5. | 7.8 |