Vulnerabilities

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-27	CVE-2024-10895	The Counter Up – Animated Number Counter & Milestone Showcase plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'lgx-counter' shortcode in all versions up to, and including, 2.4.0 due to insufficient input sanitization and output escaping on user supplied attributes. network low complexity CWE-79	6.4
2024-11-27	CVE-2024-11820	Cross-site Scripting vulnerability in Code-Projects Crud Operation System 1.0 A vulnerability, which was classified as problematic, has been found in code-projects Crud Operation System 1.0. network low complexity code-projects CWE-79	5.4
2024-11-27	CVE-2024-53676	Path Traversal vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545 A directory traversal vulnerability in Hewlett Packard Enterprise Insight Remote Support may allow remote code execution. network low complexity hpe CWE-22 critical	9.8
2024-11-27	CVE-2024-11818	SQL Injection vulnerability in PHPgurukul User Registration & Login and User Management System 1.0 A vulnerability classified as critical has been found in PHPGurukul User Registration & Login and User Management System 1.0. network low complexity phpgurukul CWE-89 critical	9.8
2024-11-27	CVE-2024-11819	SQL Injection vulnerability in 1000Projects Portfolio Management System MCA 1.0 A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. network low complexity 1000projects CWE-89 critical	9.8
2024-11-26	CVE-2024-11817	SQL Injection vulnerability in PHPgurukul User Registration & Login and User Management System 1.0 A vulnerability was found in PHPGurukul User Registration & Login and User Management System 1.0. network low complexity phpgurukul CWE-89 critical	9.8
2024-11-26	CVE-2024-11622	XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545 An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases. network low complexity hpe CWE-611	7.5
2024-11-26	CVE-2024-53673	Deserialization of Untrusted Data vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545 A java deserialization vulnerability in HPE Remote Insight Support may allow an unauthenticated attacker to execute code. network low complexity hpe CWE-502 critical	9.8
2024-11-26	CVE-2024-53674	XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545 An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases. network low complexity hpe CWE-611	7.5
2024-11-26	CVE-2024-53675	XXE vulnerability in HPE Insight Remote Support 7.12/7.12.0.529/7.12.0.545 An XML external entity injection (XXE) vulnerability in HPE Insight Remote Support may allow remote users to disclose information in certain cases. network low complexity hpe CWE-611	7.5

Vulnerabilities {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities"}]}

Vulnerabilities