Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-10-27 CVE-2024-10408 SQL Injection vulnerability in Fabianros Blood Bank Management System 1.0
A vulnerability has been found in code-projects Blood Bank Management up to 1.0 and classified as critical.
network
low complexity
fabianros CWE-89
8.8
8.8
2024-10-27 CVE-2024-10409 SQL Injection vulnerability in Fabianros Blood Bank Management System 1.0
A vulnerability was found in code-projects Blood Bank Management 1.0 and classified as critical.
network
low complexity
fabianros CWE-89
8.8
8.8
2024-10-27 CVE-2024-10407 SQL Injection vulnerability in Mayurik Petrol Pump Management 1.0
A vulnerability, which was classified as critical, was found in SourceCodester Petrol Pump Management Software 1.0.
network
low complexity
mayurik CWE-89
7.2
7.2
2024-10-26 CVE-2024-10406 SQL Injection vulnerability in Mayurik Petrol Pump Management 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0.
network
low complexity
mayurik CWE-89
7.2
7.2
2024-10-26 CVE-2020-26303 Unspecified vulnerability in Bevacqua Insane
insane is a whitelist-oriented HTML sanitizer.
network
low complexity
bevacqua
7.5
7.5
2024-10-26 CVE-2020-26304 Unspecified vulnerability in Foundation
Foundation is a front-end framework.
network
low complexity
foundation
7.5
7.5
2024-10-26 CVE-2020-26305 Unspecified vulnerability in Talyssonoc Commonregexjs
CommonRegexJS is a CommonRegex port for JavaScript.
network
low complexity
talyssonoc
7.5
7.5
2024-10-26 CVE-2020-26311 Unspecified vulnerability in Useragent Project Useragent
Useragent is a user agent parser for Node.js.
network
low complexity
useragent-project
7.5
7.5
2024-10-26 CVE-2024-9501 The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 3.0.7.
network
low complexity
CWE-288
critical
 9.8
9.8
2024-10-26 CVE-2024-10117 The WP Crowdfunding plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpcf_donate shortcode in all versions up to, and including, 2.1.11 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
6.4