Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-10-25	CVE-2024-48428	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Olivegroup Olivevle An issue in Olive VLE allows an attacker to obtain sensitive information via the reset password function. network low complexity olivegroup CWE-640 critical	9.8
2024-10-25	CVE-2024-10381	Unspecified vulnerability in Matrixcomsec Cosec Vega Faxq Firmware This vulnerability exists in Matrix Door Controller Cosec Vega FAXQ due to improper implementation of session management at the web-based management interface. network low complexity matrixcomsec critical	9.8
2024-10-25	CVE-2024-10378	SQL Injection vulnerability in Esafenet CDG 5 A vulnerability classified as critical has been found in ESAFENET CDG 5. network low complexity esafenet CWE-89 critical	9.8
2024-10-25	CVE-2024-10376	SQL Injection vulnerability in Esafenet CDG 5 A vulnerability was found in ESAFENET CDG 5. network low complexity esafenet CWE-89 critical	9.8
2024-10-25	CVE-2024-10377	SQL Injection vulnerability in Esafenet CDG 5 A vulnerability was found in ESAFENET CDG 5. network low complexity esafenet CWE-89 critical	9.8
2024-10-25	CVE-2024-47406	Missing Authentication for Critical Function vulnerability in multiple products Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability. network low complexity toshibatec sharp CWE-306 critical	9.8
2024-10-25	CVE-2024-9302	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Appcheap APP Builder The App Builder – Create Native Android & iOS Apps On The Flight plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 5.3.7. network low complexity appcheap CWE-640 critical	9.8
2024-10-25	CVE-2024-9488	Unspecified vulnerability in Gvectors Wpdiscuz The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.6.24. network low complexity gvectors critical	9.8
2024-10-25	CVE-2024-10368	SQL Injection vulnerability in Codezips Sales Management System 1.0 A vulnerability was found in Codezips Sales Management System 1.0. network low complexity codezips CWE-89 critical	9.8
2024-10-25	CVE-2024-10369	SQL Injection vulnerability in Codezips Sales Management System 1.0 A vulnerability was found in Codezips Sales Management System 1.0. network low complexity codezips CWE-89 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical