Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-20	CVE-2023-51927	SQL Injection vulnerability in Yonyou Yonbip 323.05 YonBIP v3_23.05 was discovered to contain a SQL injection vulnerability via the com.yonyou.hrcloud.attend.web.AttendScriptController.runScript() method. network low complexity yonyou CWE-89 critical	9.8
2024-01-20	CVE-2023-51928	Unrestricted Upload of File with Dangerous Type vulnerability in Yonyou Yonbip 323.05 An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction() method of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a crafted file. network low complexity yonyou CWE-434 critical	9.8
2024-01-19	CVE-2024-0738	Unspecified vulnerability in Garethhk Mldong 1.0 A vulnerability, which was classified as critical, has been found in ???? mldong 1.0. network low complexity garethhk critical	9.8
2024-01-19	CVE-2024-0739	Unspecified vulnerability in Leadshop A vulnerability, which was classified as critical, was found in Hecheng Leadshop up to 1.4.20. network low complexity leadshop critical	9.8
2024-01-19	CVE-2024-23687	Use of Hard-coded Credentials vulnerability in Openlibraryfoundation Mod-Data-Export-Spring Hard-coded credentials in FOLIO mod-data-export-spring versions before 1.5.4 and from 2.0.0 to 2.0.2 allows unauthenticated users to access critical APIs, modify user data, modify configurations including single-sign-on, and manipulate fees/fines. network low complexity openlibraryfoundation CWE-798 critical	9.1
2024-01-19	CVE-2024-0733	Unspecified vulnerability in Smsot 2.12 A vulnerability was found in Smsot up to 2.12. network low complexity smsot critical	9.8
2024-01-19	CVE-2024-0734	Unspecified vulnerability in Smsot 2.12 A vulnerability was found in Smsot up to 2.12. network low complexity smsot critical	9.8
2024-01-19	CVE-2024-0735	Unspecified vulnerability in Mayurik Online Tours & Travels Management System 1.0 A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. network low complexity mayurik critical	9.8
2024-01-19	CVE-2024-23679	Session Fixation vulnerability in Enonic XP Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. network low complexity enonic CWE-384 critical	9.8
2024-01-19	CVE-2023-50693	Unspecified vulnerability in Jester Project Jester An issue in Jester v.0.6.0 and before allows a remote attacker to send a malicious crafted request. network low complexity jester-project critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical