Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-21 | CVE-2024-43945 | Cross-Site Request Forgery (CSRF) vulnerability in Latepoint Cross-Site Request Forgery (CSRF) vulnerability in Latepoint LatePoint allows Cross Site Request Forgery.This issue affects LatePoint: from n/a through 4.9.91. | 8.8 |
| 2024-10-21 | CVE-2024-47328 | SQL Injection vulnerability in Funnelkit Automations Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in FunnelKit Automation By Autonami allows SQL Injection.This issue affects Automation By Autonami: from n/a through 3.1.2. | 7.2 |
| 2024-10-21 | CVE-2024-8625 | SQL Injection vulnerability in Total-Soft TS Poll The TS Poll WordPress plugin before 2.4.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks | 7.2 |
| 2024-10-21 | CVE-2024-10200 | Path Traversal vulnerability in Wellchoose Administrative Management System Administrative Management System from Wellchoose has a Path Traversal vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to download arbitrary files on the server. | 7.5 |
| 2024-10-21 | CVE-2024-10201 | Unrestricted Upload of File with Dangerous Type vulnerability in Wellchoose Administrative Management System Administrative Management System from Wellchoose does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload and execute webshells. | 8.8 |
| 2024-10-21 | CVE-2024-10202 | OS Command Injection vulnerability in Wellchoose Administrative Management System Administrative Management System from Wellchoose has an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject and execute arbitrary OS commands. | 8.8 |
| 2024-10-21 | CVE-2024-10198 | Cross-site Scripting vulnerability in Code-Projects Pharmacy Management 1.0 A vulnerability was found in code-projects Pharmacy Management System 1.0. | 4.8 |
| 2024-10-21 | CVE-2024-10199 | Cross-site Scripting vulnerability in Code-Projects Pharmacy Management 1.0 A vulnerability was found in code-projects Pharmacy Management System 1.0. | 4.8 |
| 2024-10-21 | CVE-2024-43689 | Out-of-bounds Write vulnerability in Elecom Wab-I1750-Ps Firmware and Wab-S1167-Ps Firmware Stack-based buffer overflow vulnerability exists in ELECOM wireless access points. | 9.8 |
| 2024-10-21 | CVE-2024-10196 | SQL Injection vulnerability in Code-Projects Pharmacy Management System 1.0 A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. | 9.8 |