Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-02-14	CVE-2024-25210	SQL Injection vulnerability in Rems Simple Expense Tracker APP 1.0 Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the expense parameter at /endpoint/delete_expense.php. network low complexity rems CWE-89 critical	9.8
2024-02-14	CVE-2024-25211	SQL Injection vulnerability in Rems Simple Expense Tracker APP 1.0 Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the category parameter at /endpoint/delete_category.php. network low complexity rems CWE-89 critical	9.8
2024-02-14	CVE-2024-25214	SQL Injection vulnerability in Sherlock Employee Management System 1.0 An issue in Employee Managment System v1.0 allows attackers to bypass authentication via injecting a crafted payload into the E-mail and Password parameters at /alogin.html. network low complexity sherlock CWE-89 critical	9.8
2024-02-14	CVE-2024-25215	SQL Injection vulnerability in Sherlock Employee Management System 1.0 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the pwd parameter at /aprocess.php. network low complexity sherlock CWE-89 critical	9.8
2024-02-14	CVE-2024-25216	SQL Injection vulnerability in Sherlock Employee Management System 1.0 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the mailud parameter at /aprocess.php. network low complexity sherlock CWE-89 critical	9.8
2024-02-14	CVE-2024-25217	SQL Injection vulnerability in Oretnom23 Online Medicine Ordering System 1.0 Online Medicine Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /omos/?p=products/view_product. network low complexity oretnom23 CWE-89 critical	9.8
2024-02-14	CVE-2024-25220	SQL Injection vulnerability in Task Manager in PHP With Source Code Project Task Manager in PHP With Source Code 1.0 Task Manager App v1.0 was discovered to contain a SQL injection vulnerability via the taskID parameter at /TaskManager/EditTask.php. network low complexity task-manager-in-php-with-source-code-project CWE-89 critical	9.8
2024-02-14	CVE-2024-25222	SQL Injection vulnerability in Task Manager in PHP With Source Code Project Task Manager in PHP With Source Code 1.0 Task Manager App v1.0 was discovered to contain a SQL injection vulnerability via the projectID parameter at /TaskManager/EditProject.php. network low complexity task-manager-in-php-with-source-code-project CWE-89 critical	9.8
2024-02-14	CVE-2024-25223	SQL Injection vulnerability in Code-Projects Simple Admin Panel 1.0 Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the orderID parameter at /adminView/viewEachOrder.php. network low complexity code-projects CWE-89 critical	9.8
2024-02-14	CVE-2024-23786	Cross-site Scripting vulnerability in Sharp Jh-Rv11 Firmware and Jh-Rvb1 Firmware Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary script on the web browser of the user who is accessing the management page of the affected product. network low complexity sharp CWE-79 critical	9.3

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical