| 2024-12-25 | CVE-2024-8950 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Arne Informatics Piramit Automation allows Blind SQL Injection.This issue affects Piramit Automation: before 27.09.2024. network low complexity CWE-89 critical | 9.9 |
| 2024-12-25 | CVE-2024-52046 | Deserialization of Untrusted Data vulnerability in Apache Mina
The ObjectSerializationDecoder in Apache MINA uses Java’s native deserialization protocol to process incoming serialized data but lacks the necessary security checks and defenses. | 9.8 |
| 2024-12-25 | CVE-2024-11281 | The WooCommerce Point of Sale plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 6.1.0. network low complexity CWE-862 critical | 9.8 |
| 2024-12-23 | CVE-2024-53961 | Path Traversal vulnerability in Adobe Coldfusion 2021/2023
ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary file system read. | 9.8 |
| 2024-12-23 | CVE-2024-12898 | SQL Injection vulnerability in 1000Projects Attendance Tracking Management System 1.0
A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. | 9.8 |
| 2024-12-23 | CVE-2024-12899 | SQL Injection vulnerability in 1000Projects Attendance Tracking Management System 1.0
A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. | 9.8 |
| 2024-12-22 | CVE-2024-12895 | SQL Injection vulnerability in Treasurehuntgame Treasurehunt
A vulnerability has been found in TreasureHuntGame TreasureHunt up to 963e0e0 and classified as critical. | 9.8 |
| 2024-12-22 | CVE-2024-12894 | SQL Injection vulnerability in Treasurehuntgame Treasurehunt
A vulnerability, which was classified as critical, was found in TreasureHuntGame TreasureHunt up to 963e0e0. | 9.8 |
| 2024-12-21 | CVE-2024-12884 | SQL Injection vulnerability in Codezips E-Commerce Site 1.0
A vulnerability was found in Codezips E-Commerce Website 1.0. | 9.8 |
| 2024-12-21 | CVE-2024-11349 | The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including, 5.1.6. network low complexity CWE-288 critical | 9.8 |