Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-04 | CVE-2025-1890 | Unrestricted Upload of File with Dangerous Type vulnerability in Shishuocms Project Shishuocms 1.1 A vulnerability has been found in shishuocms 1.1 and classified as critical. | 9.8 |
| 2025-03-03 | CVE-2024-51962 | SQL Injection vulnerability in Esri Arcgis Server 10.9.1/11.1 A SQL injection vulnerability in ArcGIS Server allows an EDIT operation to modify Column properties allowing for the execution of a SQL Injection by a remote authenticated user with elevated (non admin) privileges. There is a high impact to integrity and confidentiality and no impact to availability. | 9.6 |
| 2025-03-03 | CVE-2025-1889 | Unspecified vulnerability in Mmaitre314 Picklescan picklescan before 0.0.22 only considers standard pickle file extensions in the scope for its vulnerability scan. | 9.8 |
| 2025-03-03 | CVE-2025-26970 | Code Injection vulnerability in Arktheme the ARK Improper Control of Generation of Code ('Code Injection') vulnerability in NotFound Ark Theme Core allows Code Injection. | 9.8 |
| 2025-03-03 | CVE-2025-1869 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "username" parameter in admin/check_avalability.php. | 9.8 |
| 2025-03-03 | CVE-2025-1870 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "pagedescription" parameter in admin/aboutus.php. | 9.8 |
| 2025-03-03 | CVE-2025-1871 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "category" and "subcategory" parameters in admin/add-subcategory.php. | 9.8 |
| 2025-03-03 | CVE-2025-1872 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "sadminusername" parameter in admin/add-subadmins.php. | 9.8 |
| 2025-03-03 | CVE-2025-1873 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "pagetitle" and "pagedescription" parameters in admin/contactus.php. | 9.8 |
| 2025-03-03 | CVE-2025-1874 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "description" parameter in admin/add-category.php. | 9.8 |