Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-11-01 CVE-2024-47358 Missing Authorization vulnerability in Code-Atlantic Popup Maker
Missing Authorization vulnerability in Popup Maker allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Popup Maker: from n/a through 1.19.2.
network
low complexity
code-atlantic CWE-862
critical
9.8
2024-11-01 CVE-2024-47359 Missing Authorization vulnerability in Depicter
Missing Authorization vulnerability in Depicter Slider and Popup by Averta Depicter Slider allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Depicter Slider: from n/a through 3.2.2.
network
low complexity
depicter CWE-862
critical
9.8
2024-11-01 CVE-2024-10655 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability was found in Tongda OA 2017 up to 11.9.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-01 CVE-2024-7456 SQL Injection vulnerability in Lunary 1.4.2
A SQL injection vulnerability exists in the `/api/v1/external-users` route of lunary-ai/lunary version v1.4.2.
network
low complexity
lunary CWE-89
critical
9.8
2024-11-01 CVE-2024-10616 SQL Injection vulnerability in Tongda2000 Office Anywhere
A vulnerability classified as critical has been found in Tongda OA up to 11.9.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-01 CVE-2024-10617 SQL Injection vulnerability in Tongda2000 Office Anywhere 11.10
A vulnerability classified as critical was found in Tongda OA up to 11.10.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-01 CVE-2024-10618 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability, which was classified as critical, has been found in Tongda OA 2017 up to 11.10.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-01 CVE-2024-10619 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.10.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-01 CVE-2024-10615 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability was found in Tongda OA 2017 up to 11.10.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-01 CVE-2024-10607 SQL Injection vulnerability in Carmelogarcia Courier Management System 1.0
A vulnerability was found in code-projects Courier Management System 1.0.
network
low complexity
carmelogarcia CWE-89
critical
9.8