Vulnerabilities > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-06-27 | CVE-2024-39374 | Unspecified vulnerability in Markoni products TELSAT marKoni FM Transmitters are vulnerable to an attacker exploiting a hidden admin account that can be accessed through the use of hard-coded credentials. | 9.8 |
2024-06-27 | CVE-2024-39375 | Unspecified vulnerability in Markoni products TELSAT marKoni FM Transmitters are vulnerable to an attacker bypassing authentication and gaining administrator privileges. | 9.8 |
2024-06-27 | CVE-2024-39376 | Unspecified vulnerability in Markoni products TELSAT marKoni FM Transmitters are vulnerable to users gaining unauthorized access to sensitive information or performing actions beyond their designated permissions. | 9.8 |
2024-06-27 | CVE-2024-6371 | Unspecified vulnerability in Janobe Pool of Bethesda Online Reservation System 1.0 A vulnerability, which was classified as critical, has been found in itsourcecode Pool of Bethesda Online Reservation System 1.0. | 9.8 |
2024-06-27 | CVE-2024-6372 | Unspecified vulnerability in Angeljudesuarez Tailoring Management System 1.0 A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. | 9.8 |
2024-06-27 | CVE-2024-6373 | Unspecified vulnerability in Kevinwong Online Food Ordering System 1.0 A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. | 9.8 |
2024-06-27 | CVE-2024-1107 | Unspecified vulnerability in Talyabilisim Travel Apps Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Travel APPS: before v17.0.68. | 9.8 |
2024-06-25 | CVE-2024-37843 | SQL Injection vulnerability in Craftcms Craft CMS Craft CMS up to v3.7.31 was discovered to contain a SQL injection vulnerability via the GraphQL API endpoint. | 9.8 |
2024-06-25 | CVE-2024-4883 | Unspecified vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2023.1.3, a Remote Code Execution issue exists in Progress WhatsUp Gold. | 9.8 |
2024-06-25 | CVE-2024-4884 | Command Injection vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Remote Code Execution vulnerability in Progress WhatsUpGold. The Apm.UI.Areas.APM.Controllers.CommunityController allows execution of commands with iisapppool\nmconsole privileges. | 9.8 |