| 2024-10-27 | CVE-2024-10423 | SQL Injection vulnerability in Projectworlds Student Project Allocation System 1.0
A vulnerability, which was classified as critical, was found in Project Worlds Student Project Allocation System 1.0. | 9.8 |
| 2024-10-27 | CVE-2024-10421 | SQL Injection vulnerability in Nurhodelta17 Attendance and Payroll System 1.0
A vulnerability classified as critical was found in SourceCodester Attendance and Payroll System 1.0. | 9.8 |
| 2024-10-27 | CVE-2024-10420 | Unrestricted Upload of File with Dangerous Type vulnerability in Nurhodelta17 Attendance and Payroll System 1.0
A vulnerability classified as critical has been found in SourceCodester Attendance and Payroll System 1.0. | 9.8 |
| 2024-10-27 | CVE-2024-10418 | SQL Injection vulnerability in Fabianros Blood Bank Management System 1.0
A vulnerability was found in code-projects Blood Bank Management System 1.0. | 9.8 |
| 2024-10-27 | CVE-2024-10413 | Unrestricted Upload of File with Dangerous Type vulnerability in Janobe Online Hotel Reservation System 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Online Hotel Reservation System 1.0. | 9.8 |
| 2024-10-26 | CVE-2024-9501 | The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 3.0.7. network low complexity CWE-288 critical | 9.8 |
| 2024-10-26 | CVE-2024-9930 | The Extensions by HocWP Team plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 0.2.3.2. network low complexity CWE-288 critical | 9.8 |
| 2024-10-26 | CVE-2024-9931 | The Wux Blog Editor plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.0.0. network low complexity CWE-288 critical | 9.8 |
| 2024-10-26 | CVE-2024-9932 | The Wux Blog Editor plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'wuxbt_insertImageNew' function in versions up to, and including, 3.0.0. network low complexity CWE-434 critical | 9.8 |
| 2024-10-25 | CVE-2024-10386 | Unspecified vulnerability in Rockwellautomation Thinmanager
CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. | 9.8 |