Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2025-04-08 CVE-2025-3400 SQL Injection vulnerability in Esafenet CDG 5.6.3.154.20520250114
A vulnerability, which was classified as critical, was found in ESAFENET CDG 5.6.3.154.205_20250114.
network
low complexity
esafenet CWE-89
critical
9.8
2025-04-07 CVE-2025-3383 SQL Injection vulnerability in Senior-Walter Web-Based Pharmacy Product Management System 1.0
A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0 and classified as critical.
network
low complexity
senior-walter CWE-89
critical
9.8
2025-04-07 CVE-2025-3384 SQL Injection vulnerability in 1000Projects Human Resource Management System 1.0
A vulnerability was found in 1000 Projects Human Resource Management System 1.0.
network
low complexity
1000projects CWE-89
critical
9.8
2025-04-07 CVE-2025-3380 Unspecified vulnerability in Pcman FTP Server 2.0.7
A vulnerability, which was classified as critical, has been found in PCMan FTP Server 2.0.7.
network
low complexity
pcman
critical
9.8
2025-04-07 CVE-2025-3378 Classic Buffer Overflow vulnerability in Pcman FTP Server 2.0.7
A vulnerability classified as critical has been found in PCMan FTP Server 2.0.7.
network
low complexity
pcman CWE-120
critical
9.8
2025-04-07 CVE-2025-3374 Classic Buffer Overflow vulnerability in Pcman FTP Server 2.0.7
A vulnerability was found in PCMan FTP Server 2.0.7 and classified as critical.
network
low complexity
pcman CWE-120
critical
9.8
2025-04-07 CVE-2025-3331 SQL Injection vulnerability in Code-Projects Online Restaurant Management System 1.0
A vulnerability, which was classified as critical, has been found in codeprojects Online Restaurant Management System 1.0.
network
low complexity
code-projects CWE-89
critical
9.8
2025-04-07 CVE-2025-3332 SQL Injection vulnerability in Code-Projects Online Restaurant Management System 1.0
A vulnerability, which was classified as critical, was found in codeprojects Online Restaurant Management System 1.0.
network
low complexity
code-projects CWE-89
critical
9.8
2025-04-07 CVE-2025-3330 SQL Injection vulnerability in Code-Projects Online Restaurant Management System 1.0
A vulnerability classified as critical was found in codeprojects Online Restaurant Management System 1.0.
network
low complexity
code-projects CWE-89
critical
9.8
2025-04-06 CVE-2025-32370 Unrestricted Upload of File with Dangerous Type vulnerability in Kentico Xperience
Kentico Xperience before 13.0.178 has a specific set of allowed ContentUploader file extensions for unauthenticated uploads; however, because .zip is processed through TryZipProviderSafe, there is additional functionality to create files with other extensions.
network
low complexity
kentico CWE-434
critical
9.8