Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-19 | CVE-2024-29736 | Unspecified vulnerability in Apache CXF A SSRF vulnerability in WADL service description in versions of Apache CXF before 4.0.5, 3.6.4 and 3.5.9 allows an attacker to perform SSRF style attacks on REST webservices. | 9.1 |
| 2024-07-19 | CVE-2024-6205 | SQL Injection vulnerability in Payplus Payment Gateway The PayPlus Payment Gateway WordPress plugin before 6.6.9 does not properly sanitise and escape a parameter before using it in a SQL statement via a WooCommerce API route available to unauthenticated users, leading to an SQL injection vulnerability. | 9.8 |
| 2024-07-19 | CVE-2024-6899 | Unspecified vulnerability in Jkev Record Management System 1.0 A vulnerability was found in SourceCodester Record Management System 1.0. | 9.8 |
| 2024-07-19 | CVE-2024-6898 | Unspecified vulnerability in Jkev Record Management System 1.0 A vulnerability was found in SourceCodester Record Management System 1.0. | 9.8 |
| 2024-07-18 | CVE-2023-40704 | Unspecified vulnerability in Philips VUE Pacs 12.2.8.0 Philips Vue PACS uses default credentials for potentially critical functionality. | 9.8 |
| 2024-07-18 | CVE-2024-40628 | Path Traversal vulnerability in Fit2Cloud Jumpserver JumpServer is an open-source Privileged Access Management (PAM) tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. | 9.1 |
| 2024-07-18 | CVE-2024-40629 | Path Traversal vulnerability in Fit2Cloud Jumpserver JumpServer is an open-source Privileged Access Management (PAM) tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. | 9.8 |
| 2024-07-18 | CVE-2024-39907 | SQL Injection vulnerability in Fit2Cloud 1Panel 1.10.10Lts/1.10.9Lts 1Panel is a web-based linux server management control panel. | 9.8 |
| 2024-07-18 | CVE-2024-39911 | SQL Injection vulnerability in Fit2Cloud 1Panel 1.10.10Lts 1Panel is a web-based linux server management control panel. | 9.8 |
| 2024-07-18 | CVE-2024-6164 | Path Traversal vulnerability in Ymc-22 Filter & Grids The Filter & Grids WordPress plugin before 2.8.33 is vulnerable to Local File Inclusion via the post_layout parameter. | 9.8 |