Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-29	CVE-2024-9327	SQL Injection vulnerability in Code-Projects Blood Bank System 1.0 A vulnerability was found in code-projects Blood Bank System 1.0. network low complexity code-projects CWE-89 critical	9.8
2024-09-29	CVE-2024-9326	SQL Injection vulnerability in PHPgurukul Online Shopping Portal 2.0 A vulnerability classified as critical was found in PHPGurukul Online Shopping Portal 2.0. network low complexity phpgurukul CWE-89 critical	9.8
2024-09-29	CVE-2024-9322	SQL Injection vulnerability in Anisha Supply Chain Management 1.0 A vulnerability was found in code-projects Supply Chain Management 1.0. network low complexity anisha CWE-89 critical	9.8
2024-09-28	CVE-2024-9318	SQL Injection vulnerability in Mayurik Advocate Office Management System 1.0 A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. network low complexity mayurik CWE-89 critical	9.8
2024-09-28	CVE-2024-9296	SQL Injection vulnerability in Mayurik Advocate Office Management System 1.0 A vulnerability was found in SourceCodester Advocate Office Management System 1.0. network low complexity mayurik CWE-89 critical	9.8
2024-09-28	CVE-2024-9295	SQL Injection vulnerability in Mayurik Advocate Office Management System 1.0 A vulnerability was found in SourceCodester Advocate Office Management System 1.0 and classified as critical. network low complexity mayurik CWE-89 critical	9.8
2024-09-28	CVE-2024-8353	Deserialization of Untrusted Data vulnerability in Givewp The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.16.1 via deserialization of untrusted input via several parameters like 'give_title' and 'card_address'. network low complexity givewp CWE-502 critical	9.8
2024-09-27	CVE-2024-8630	SQL Injection vulnerability in Alisonic Sibylla Firmware Alisonic Sibylla devices are vulnerable to SQL injection attacks, which could allow complete access to the database. network low complexity alisonic CWE-89 critical	9.8
2024-09-27	CVE-2024-8607	SQL Injection vulnerability in Oceanicsoft Valeapp Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oceanic Software ValeApp allows SQL Injection.This issue affects ValeApp: before v2.0.0. network low complexity oceanicsoft CWE-89 critical	9.8
2024-09-27	CVE-2024-8643	Session Fixation vulnerability in Oceanicsoft Valeapp Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking.This issue affects ValeApp: before v2.0.0. network low complexity oceanicsoft CWE-384 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical