Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-11-01 CVE-2024-10609 SQL Injection vulnerability in Angeljudesuarez Tailoring Management System 1.0
A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System Project 1.0.
network
low complexity
angeljudesuarez CWE-89
critical
 9.8
9.8
2024-11-01 CVE-2024-10602 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical.
network
low complexity
tongda2000 CWE-89
critical
 9.8
9.8
2024-11-01 CVE-2024-10605 Cross-Site Request Forgery (CSRF) vulnerability in Fabianros Blood Bank Management System 1.0
A vulnerability was found in code-projects Blood Bank Management System 1.0.
network
low complexity
fabianros CWE-352
6.5
6.5
2024-10-31 CVE-2024-10600 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.6.
network
low complexity
tongda2000 CWE-89
critical
 9.8
9.8
2024-10-31 CVE-2024-10601 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability has been found in Tongda OA 2017 up to 11.10 and classified as critical.
network
low complexity
tongda2000 CWE-89
critical
 9.8
9.8
2024-10-31 CVE-2024-10598 Missing Authorization vulnerability in Tongda2000 Office Anywhere
A vulnerability classified as critical was found in Tongda OA 11.2/11.3/11.4/11.5/11.6.
network
low complexity
tongda2000 CWE-862
6.5
6.5
2024-10-31 CVE-2024-10599 Allocation of Resources Without Limits or Throttling vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7.
network
low complexity
tongda2000 CWE-770
7.5
7.5
2024-10-31 CVE-2024-6480 The SIP Reviews Shortcode for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'no_of_reviews' attribute in the woocommerce_reviews shortcode in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-89
6.4
6.4
2024-10-31 CVE-2024-10594 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability was found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
8.8
8.8
2024-10-31 CVE-2024-10595 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability was found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
critical
 9.8
9.8