Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-12-05 CVE-2018-9388 Integer Underflow (Wrap or Wraparound) vulnerability in Google Android
In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of bound writes due to missing bounds checks or integer underflows.
network
low complexity
google CWE-191
critical
 9.8
9.8
2024-12-05 CVE-2024-12233 Unrestricted Upload of File with Dangerous Type vulnerability in Fabianros Online Notice Board 1.0
A vulnerability was found in code-projects Online Notice Board up to 1.0 and classified as critical.
network
low complexity
fabianros CWE-434
critical
 9.8
9.8
2024-12-05 CVE-2024-12234 SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0.
network
low complexity
1000projects CWE-89
critical
 9.8
9.8
2024-12-05 CVE-2024-12229 SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0
A vulnerability classified as critical was found in PHPGurukul Complaint Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2024-12-05 CVE-2024-12230 SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0
A vulnerability, which was classified as critical, has been found in PHPGurukul Complaint Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2024-12-05 CVE-2024-12228 SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0
A vulnerability classified as critical has been found in PHPGurukul Complaint Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2024-12-05 CVE-2024-12187 SQL Injection vulnerability in 1000Projects Library Management System 1.0
A vulnerability was found in 1000 Projects Library Management System 1.0.
network
low complexity
1000projects CWE-89
critical
 9.8
9.8
2024-12-05 CVE-2024-12188 SQL Injection vulnerability in 1000Projects Library Management System 1.0
A vulnerability was found in 1000 Projects Library Management System 1.0.
network
low complexity
1000projects CWE-89
critical
 9.8
9.8
2024-12-04 CVE-2024-54154 Path Traversal vulnerability in Jetbrains Youtrack
In JetBrains YouTrack before 2024.3.51866 system takeover was possible through path traversal in plugin sandbox
network
low complexity
jetbrains CWE-22
critical
 9.8
9.8
2024-12-03 CVE-2024-25020 Unrestricted Upload of File with Dangerous Type vulnerability in IBM Cognos Controller 11.0.0/11.0.1
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by allowing unrestricted filetype attachments in the Journal entry page.
network
low complexity
ibm CWE-434
critical
 9.8
9.8