Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2025-01-04 CVE-2025-0204 SQL Injection vulnerability in Code-Projects Online Shoe Store 1.0
A vulnerability was found in code-projects Online Shoe Store 1.0.
network
low complexity
code-projects CWE-89
critical
 9.8
9.8
2025-01-04 CVE-2025-0203 SQL Injection vulnerability in Code-Projects Student Management System 1.0
A vulnerability was found in code-projects Student Management System 1.0.
network
low complexity
code-projects CWE-89
critical
 9.8
9.8
2025-01-02 CVE-2023-47183 Missing Authorization vulnerability in Givewp
Missing Authorization vulnerability in GiveWP GiveWP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GiveWP: from n/a through 2.33.1.
network
low complexity
givewp CWE-862
critical
 9.8
9.8
2025-01-02 CVE-2023-47188 Missing Authorization vulnerability in Presstigers Simple JOB Board
Missing Authorization vulnerability in PressTigers Simple Job Board allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple Job Board: from n/a through 2.10.5.
network
low complexity
presstigers CWE-862
critical
 9.8
9.8
2024-12-31 CVE-2024-13085 SQL Injection vulnerability in PHPgurukul Land Record System 1.0
A vulnerability, which was classified as critical, has been found in PHPGurukul Land Record System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2024-12-31 CVE-2024-13084 SQL Injection vulnerability in PHPgurukul Land Record System 1.0
A vulnerability classified as critical was found in PHPGurukul Land Record System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2024-12-31 CVE-2024-13072 SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0.
network
low complexity
1000projects CWE-89
critical
 9.8
9.8
2024-12-31 CVE-2024-12108 Authentication Bypass by Spoofing vulnerability in Progress Whatsup Gold
In WhatsUp Gold versions released before 2024.0.2, an attacker can gain access to the WhatsUp Gold server via the public API.
network
low complexity
progress CWE-290
critical
 9.6
9.6
2024-12-30 CVE-2024-56801 SQL Injection vulnerability in Infotel Tasklists
Tasklists provides plugin tasklists for GLPI.
network
low complexity
infotel CWE-89
critical
 9.8
9.8
2024-12-30 CVE-2024-22063 Improper Neutralization of Formula Elements in a CSV File vulnerability in ZTE Zenic ONE R58
The ZENIC ONE R58 products by ZTE Corporation have a command injection vulnerability.
network
low complexity
zte CWE-1236
critical
 9.0
9.0