Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-06-18 CVE-2024-6083 Unrestricted Upload of File with Dangerous Type vulnerability in PHPvibe 11.0.46
A vulnerability, which was classified as critical, was found in PHPVibe 11.0.46.
network
low complexity
phpvibe CWE-434
critical
9.8
2024-06-17 CVE-2024-6067 Unspecified vulnerability in Oretnom23 Music Class Enrollment System 1.0
A vulnerability classified as critical was found in SourceCodester Music Class Enrollment System 1.0.
network
low complexity
oretnom23
critical
9.8
2024-06-17 CVE-2023-37058 Unspecified vulnerability in Unionman Jlink Ax1800 Firmware 1.0
Insecure Permissions vulnerability in JLINK Unionman Technology Co.
network
low complexity
unionman
critical
9.8
2024-06-17 CVE-2024-6065 Unspecified vulnerability in Janobe Bakery Online Ordering System 1.0
A vulnerability was found in itsourcecode Bakery Online Ordering System 1.0.
network
low complexity
janobe
critical
9.8
2024-06-17 CVE-2024-6066 Unspecified vulnerability in Mayurik Best House Rental Management System 1.0
A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0.
network
low complexity
mayurik
critical
9.8
2024-06-17 CVE-2024-6043 SQL Injection vulnerability in Mayurik Best House Rental Management System 1.0
A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0.
network
low complexity
mayurik CWE-89
critical
9.8
2024-06-17 CVE-2024-6042 Unspecified vulnerability in Angeljudesuarez Real Estate Management System 1.0
A vulnerability was found in itsourcecode Real Estate Management System 1.0.
network
low complexity
angeljudesuarez
critical
9.8
2024-06-16 CVE-2024-38462 Unspecified vulnerability in Irods 4.1.10/4.2.0
iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cpp#L94-L106 reference.
network
low complexity
irods
critical
9.8
2024-06-16 CVE-2024-38466 Use of Hard-coded Credentials vulnerability in Guoxinled Synthesis Image System
Shenzhen Guoxin Synthesis image system before 8.3.0 has a 123456Qw default password.
network
low complexity
guoxinled CWE-798
critical
9.8
2024-06-16 CVE-2024-38468 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Guoxinled Synthesis Image System
Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized password resets via the resetPassword API.
network
low complexity
guoxinled CWE-640
critical
9.8