Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-27 | CVE-2024-35260 | Unspecified vulnerability in Microsoft Power Platform An authenticated attacker can exploit an untrusted search path vulnerability in Microsoft Dataverse to execute code over a network. | 9.8 |
| 2024-06-27 | CVE-2024-39374 | Unspecified vulnerability in Markoni products TELSAT marKoni FM Transmitters are vulnerable to an attacker exploiting a hidden admin account that can be accessed through the use of hard-coded credentials. | 9.8 |
| 2024-06-27 | CVE-2024-39375 | Unspecified vulnerability in Markoni products TELSAT marKoni FM Transmitters are vulnerable to an attacker bypassing authentication and gaining administrator privileges. | 9.8 |
| 2024-06-27 | CVE-2024-39376 | Unspecified vulnerability in Markoni products TELSAT marKoni FM Transmitters are vulnerable to users gaining unauthorized access to sensitive information or performing actions beyond their designated permissions. | 9.8 |
| 2024-06-27 | CVE-2024-6371 | Unspecified vulnerability in Janobe Pool of Bethesda Online Reservation System 1.0 A vulnerability, which was classified as critical, has been found in itsourcecode Pool of Bethesda Online Reservation System 1.0. | 9.8 |
| 2024-06-27 | CVE-2024-6372 | Unspecified vulnerability in Angeljudesuarez Tailoring Management System 1.0 A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. | 9.8 |
| 2024-06-27 | CVE-2024-6373 | Unspecified vulnerability in Kevinwong Online Food Ordering System 1.0 A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. | 9.8 |
| 2024-06-27 | CVE-2024-1107 | Unspecified vulnerability in Talyabilisim Travel Apps Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travel APPS: before v17.0.68. | 9.8 |
| 2024-06-25 | CVE-2024-37843 | SQL Injection vulnerability in Craftcms Craft CMS Craft CMS up to v3.7.31 was discovered to contain a SQL injection vulnerability via the GraphQL API endpoint. | 9.8 |
| 2024-06-25 | CVE-2024-4883 | Unspecified vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2023.1.3, a Remote Code Execution issue exists in Progress WhatsUp Gold. | 9.8 |