Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-11-08 CVE-2024-10997 SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0
A vulnerability was found in 1000 Projects Bookstore Management System 1.0.
network
low complexity
bookstore-management-system-project CWE-89
critical
9.8
2024-11-08 CVE-2024-10991 SQL Injection vulnerability in Codezips Hospital Appointment System 1.0
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0.
network
low complexity
codezips CWE-89
critical
9.8
2024-11-08 CVE-2024-10988 SQL Injection vulnerability in Anisha E-Health Care System 1.0
A vulnerability was found in code-projects E-Health Care System 1.0.
network
low complexity
anisha CWE-89
critical
9.1
2024-11-07 CVE-2024-10968 SQL Injection vulnerability in 1000Projects Bookstore Management System 1.0
A vulnerability was found in 1000 Projects Bookstore Management System 1.0.
network
low complexity
1000projects CWE-89
critical
9.8
2024-11-07 CVE-2024-10969 SQL Injection vulnerability in 1000Projects Bookstore Management System 1.0
A vulnerability was found in 1000 Projects Bookstore Management System 1.0.
network
low complexity
1000projects CWE-89
critical
9.8
2024-11-07 CVE-2024-10964 Classic Buffer Overflow vulnerability in Emqx Neuron
A vulnerability classified as critical has been found in emqx neuron up to 2.10.0.
network
low complexity
emqx CWE-120
critical
9.8
2024-11-06 CVE-2024-10919 OS Command Injection vulnerability in Didi Super-Jacoco 1.0
A vulnerability has been found in didi Super-Jacoco 1.0 and classified as critical.
network
low complexity
didi CWE-78
critical
9.8
2024-11-06 CVE-2024-10914 Unspecified vulnerability in Dlink products
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028.
network
low complexity
dlink
critical
9.8
2024-11-06 CVE-2024-10915 OS Command Injection vulnerability in Dlink products
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028.
network
low complexity
dlink CWE-78
critical
9.8
2024-11-06 CVE-2024-8615 Unrestricted Upload of File with Dangerous Type vulnerability in Eyecix Jobsearch WP JOB Board
The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_location_load_excel_file_callback() function in all versions up to, and including, 2.6.7.
network
low complexity
eyecix CWE-434
critical
9.8