Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-07-22	CVE-2024-6966	Unspecified vulnerability in Adonesevangelista Online Blood Bank Management System 1.0 A vulnerability was found in itsourcecode Online Blood Bank Management System 1.0 and classified as critical. network low complexity adonesevangelista critical	9.8
2024-07-21	CVE-2024-6957	Unspecified vulnerability in Angeljudesuarez University Management System 1.0 A vulnerability classified as critical has been found in itsourcecode University Management System 1.0. network low complexity angeljudesuarez critical	9.8
2024-07-21	CVE-2024-6953	SQL Injection vulnerability in Angeljudesuarez Tailoring Management System 1.0 A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. network low complexity angeljudesuarez CWE-89 critical	9.8
2024-07-21	CVE-2024-6951	Unspecified vulnerability in Oretnom23 Simple Online Book Store System 1.0 A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Book Store System 1.0. network low complexity oretnom23 critical	9.8
2024-07-21	CVE-2024-6948	Unrestricted Upload of File with Dangerous Type vulnerability in Gargaj Wuhu A vulnerability classified as critical has been found in Gargaj wuhu up to 3faad49bfcc3895e9ff76a591d05c8941273d120. network low complexity gargaj CWE-434 critical	9.8
2024-07-21	CVE-2024-38437	Missing Authentication for Critical Function vulnerability in Dlink Dsl-225 Firmware Bz1.00.16 D-Link - CWE-288:Authentication Bypass Using an Alternate Path or Channel network low complexity dlink CWE-306 critical	9.8
2024-07-21	CVE-2024-38438	Unspecified vulnerability in Dlink Dsl-225 Firmware Gem1.00.02 D-Link - CWE-294: Authentication Bypass by Capture-replay network low complexity dlink critical	9.8
2024-07-21	CVE-2024-6945	Unspecified vulnerability in Flute-Cms Flute 0.2.2.4 A vulnerability was found in Flute CMS 0.2.2.4-alpha. network low complexity flute-cms critical	9.8
2024-07-19	CVE-2024-29736	Unspecified vulnerability in Apache CXF A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices. network low complexity apache critical	9.1
2024-07-19	CVE-2024-6205	SQL Injection vulnerability in Payplus Payment Gateway The PayPlus Payment Gateway WordPress plugin before 6.6.9 does not properly sanitise and escape a parameter before using it in a SQL statement via a WooCommerce API route available to unauthenticated users, leading to an SQL injection vulnerability. network low complexity payplus CWE-89 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical