Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-23 | CVE-2024-11631 | SQL Injection vulnerability in Angeljudesuarez Tailoring Management System 1.0 A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. | 9.8 |
| 2024-11-22 | CVE-2024-8806 | Unspecified vulnerability in Cohesive Vns3 Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. | 9.8 |
| 2024-11-22 | CVE-2024-8807 | Unspecified vulnerability in Cohesive Vns3 Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. | 9.8 |
| 2024-11-22 | CVE-2024-52723 | OS Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.1041B20240224 In TOTOLINK X6000R V9.4.0cu.1041_B20240224 in the shttpd file, the Uci_Set Str function is used without strict parameter filtering. | 9.8 |
| 2024-11-22 | CVE-2024-41779 | IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2 and 7.0.3 could allow a remote attacker to bypass security restrictions, caused by a race condition. | 9.8 |
| 2024-11-21 | CVE-2024-11592 | SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0 A vulnerability has been found in 1000 Projects Beauty Parlour Management System 1.0 and classified as critical. | 9.8 |
| 2024-11-21 | CVE-2024-11591 | SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0 A vulnerability, which was classified as critical, was found in 1000 Projects Beauty Parlour Management System 1.0. | 9.8 |
| 2024-11-21 | CVE-2024-11590 | SQL Injection vulnerability in 1000Projects Bookstore Management System 1.0 A vulnerability, which was classified as critical, has been found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-21 | CVE-2024-11320 | Command Injection vulnerability in Pandorafms Pandora FMS Arbitrary commands execution on the server by exploiting a command injection vulnerability in the LDAP authentication mechanism. | 9.8 |
| 2024-11-21 | CVE-2024-51151 | Command Injection vulnerability in Dlink Di-8200 Firmware 16.07.26A1 D-Link DI-8200 16.07.26A1 is vulnerable to remote command execution in the msp_info_htm function via the flag parameter and cmd parameter. | 9.8 |