Vulnerabilities > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-11-07 | CVE-2024-10969 | SQL Injection vulnerability in 1000Projects Bookstore Management System 1.0 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
2024-11-07 | CVE-2024-47073 | Unspecified vulnerability in Dataease DataEase is an open source data visualization analysis tool that helps users quickly analyze data and gain insights into business trends. | 9.1 |
2024-11-07 | CVE-2024-10964 | Classic Buffer Overflow vulnerability in Emqx Neuron A vulnerability classified as critical has been found in emqx neuron up to 2.10.0. | 9.8 |
2024-11-06 | CVE-2024-10919 | OS Command Injection vulnerability in Didi Super-Jacoco 1.0 A vulnerability has been found in didi Super-Jacoco 1.0 and classified as critical. | 9.8 |
2024-11-06 | CVE-2024-10914 | Unspecified vulnerability in Dlink products A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. | 9.8 |
2024-11-06 | CVE-2024-10915 | OS Command Injection vulnerability in Dlink products A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. | 9.8 |
2024-11-06 | CVE-2024-8615 | Unrestricted Upload of File with Dangerous Type vulnerability in Eyecix Jobsearch WP JOB Board The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_location_load_excel_file_callback() function in all versions up to, and including, 2.6.7. | 9.8 |
2024-11-05 | CVE-2024-10844 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0 A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
2024-11-05 | CVE-2024-10845 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0 A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as critical. | 9.8 |
2024-11-05 | CVE-2024-10687 | SQL Injection vulnerability in Contest-Gallery Contest Gallery The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal, Social Share Buttons plugin for WordPress is vulnerable to time-based SQL Injection via the $collectedIds parameter in all versions up to, and including, 24.0.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 9.8 |