Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-10 | CVE-2024-46956 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. | 7.8 |
| 2024-11-10 | CVE-2024-46613 | Integer Overflow or Wraparound vulnerability in Weechat WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. | 9.8 |
| 2024-11-10 | CVE-2024-46951 | Access of Uninitialized Pointer vulnerability in multiple products An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. | 7.8 |
| 2024-11-10 | CVE-2024-11057 | SQL Injection vulnerability in Codezips Hospital Appointment System 1.0 A vulnerability has been found in Codezips Hospital Appointment System 1.0 and classified as critical. | 9.8 |
| 2024-11-10 | CVE-2024-11056 | Stack-based Buffer Overflow vulnerability in Tenda Ac10 Firmware 16.03.10.13 A vulnerability, which was classified as critical, was found in Tenda AC10 16.03.10.13. | 8.8 |
| 2024-11-10 | CVE-2024-11055 | SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0 A vulnerability, which was classified as critical, has been found in 1000 Projects Beauty Parlour Management System 1.0. | 9.8 |
| 2024-11-10 | CVE-2024-10265 | Cross-site Scripting vulnerability in 10Web Form Maker The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.15.30. | 6.1 |
| 2024-11-10 | CVE-2024-10958 | Code Injection vulnerability in Wppa WP Photo Album Plus The The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution via getshortcodedrenderedfenodelay AJAX action in all versions up to, and including, 8.8.08.007 . | 7.3 |
| 2024-11-10 | CVE-2024-51576 | Cross-site Scripting vulnerability in Wpza AMP IMG Shortcode Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPZA AMP Img Shortcode allows Stored XSS.This issue affects AMP Img Shortcode: from n/a through 1.0.1. | 5.4 |
| 2024-11-10 | CVE-2024-11054 | Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Simple Music Cloud Community System 1.0 A vulnerability classified as critical was found in SourceCodester Simple Music Cloud Community System 1.0. | 9.8 |