Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-10-01 CVE-2024-9360 SQL Injection vulnerability in Code-Projects Restaurant Reservation System 1.0
A vulnerability was found in code-projects Restaurant Reservation System 1.0.
network
low complexity
code-projects CWE-89
critical
 9.8
9.8
2024-10-01 CVE-2024-9359 SQL Injection vulnerability in Code-Projects Restaurant Reservation System 1.0
A vulnerability was found in code-projects Restaurant Reservation System 1.0 and classified as critical.
network
low complexity
code-projects CWE-89
critical
 9.8
9.8
2024-09-30 CVE-2024-45073 IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting.
network
low complexity
 4.8
4.8
2024-09-30 CVE-2024-7670 Out-of-bounds Read vulnerability in Autodesk Navisworks 2025/2025.1/2025.2
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force an Out-of-Bounds Read.
local
low complexity
autodesk CWE-125
7.8
7.8
2024-09-30 CVE-2024-7671 Out-of-bounds Write vulnerability in Autodesk Navisworks 2025/2025.1/2025.2
A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, can force an Out-of-Bounds Write.
local
low complexity
autodesk CWE-787
7.8
7.8
2024-09-30 CVE-2024-7672 Out-of-bounds Write vulnerability in Autodesk Navisworks 2025/2025.1/2025.2
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force an Out-of-Bounds Write.
local
low complexity
autodesk CWE-787
7.8
7.8
2024-09-30 CVE-2024-7673 Out-of-bounds Write vulnerability in Autodesk Navisworks 2025/2025.1/2025.2
A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow.
local
low complexity
autodesk CWE-787
7.8
7.8
2024-09-30 CVE-2024-7674 Out-of-bounds Write vulnerability in Autodesk Navisworks 2025/2025.1/2025.2
A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow.
local
low complexity
autodesk CWE-787
7.8
7.8
2024-09-30 CVE-2024-7675 Use After Free vulnerability in Autodesk Navisworks 2025/2025.1/2025.2
A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free.
local
low complexity
autodesk CWE-416
7.8
7.8
2024-09-30 CVE-2024-9158 Cross-site Scripting vulnerability in Tenable Nessus Network Monitor
A stored cross site scripting vulnerability exists in Nessus Network Monitor where an authenticated, privileged local attacker could inject arbitrary code into the NNM UI via the local CLI.
local
low complexity
tenable CWE-79
4.6
4.6