Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-12-31 CVE-2024-13075 Cross-site Scripting vulnerability in PHPgurukul Land Record System 1.0
A vulnerability classified as problematic was found in PHPGurukul Land Record System 1.0.
network
low complexity
phpgurukul CWE-79
5.4
2024-12-31 CVE-2024-13076 Cross-site Scripting vulnerability in PHPgurukul Land Record System 1.0
A vulnerability, which was classified as problematic, has been found in PHPGurukul Land Record System 1.0.
network
low complexity
phpgurukul CWE-79
5.4
2024-12-31 CVE-2023-6602 A flaw was found in FFmpeg's TTY Demuxer.
network
low complexity
CWE-99
5.3
2024-12-31 CVE-2023-6603 A flaw was found in FFmpeg's HLS playlist parsing.
network
low complexity
CWE-99
7.5
2024-12-31 CVE-2024-13072 SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0.
network
low complexity
1000projects CWE-89
critical
9.8
2024-12-31 CVE-2024-12105 Path Traversal vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2024.0.2, an authenticated user can use a specially crafted HTTP request that can lead to information disclosure.
network
low complexity
progress CWE-22
6.5
2024-12-31 CVE-2024-12106 Missing Authentication for Critical Function vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2024.0.2, an unauthenticated attacker can configure LDAP settings.
network
low complexity
progress CWE-306
7.5
2024-12-31 CVE-2024-12108 Authentication Bypass by Spoofing vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2024.0.2, an attacker can gain access to the WhatsUp Gold server via the public API.
network
low complexity
progress CWE-290
critical
9.6
2024-12-31 CVE-2024-56217 Missing Authorization vulnerability in W3Eden Download Manager
Missing Authorization vulnerability in W3 Eden, Inc.
network
low complexity
w3eden CWE-862
6.3
2024-12-31 CVE-2024-56225 Missing Authorization vulnerability in Leap13 Premium Addons for Elementor
Missing Authorization vulnerability in Leap13 Premium Addons for Elementor allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Premium Addons for Elementor: from n/a through 4.10.56.
network
low complexity
leap13 CWE-862
8.8