Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-02	CVE-2024-10697	Command Injection vulnerability in Tenda AC6 Firmware 15.03.05.19 A vulnerability has been found in Tenda AC6 15.03.05.19 and classified as critical. network low complexity tenda CWE-77 critical	9.8
2024-11-01	CVE-2024-51252	OS Command Injection vulnerability in Draytek Vigor3900 Firmware 1.5.1.3 In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the restore function. network low complexity draytek CWE-78 critical	9.8
2024-11-01	CVE-2024-51431	Use of Hard-coded Credentials vulnerability in Lb-Link Bl-Wr1300H Firmware 1.0.4 LB-LINK BL-WR 1300H v.1.0.4 contains hardcoded credentials stored in /etc/shadow which are easily guessable. network low complexity lb-link CWE-798 critical	9.8
2024-11-01	CVE-2024-10659	SQL Injection vulnerability in Esafenet CDG 5 A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. network low complexity esafenet CWE-89 critical	9.8
2024-11-01	CVE-2024-10660	SQL Injection vulnerability in Esafenet CDG 5 A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. network low complexity esafenet CWE-89 critical	9.8
2024-11-01	CVE-2024-10656	SQL Injection vulnerability in Tongda2000 Office Anywhere 2017 A vulnerability was found in Tongda OA 2017 up to 11.9. network low complexity tongda2000 CWE-89 critical	9.8
2024-11-01	CVE-2024-10657	SQL Injection vulnerability in Tongda2000 Office Anywhere 11.10 A vulnerability classified as critical has been found in Tongda OA up to 11.10. network low complexity tongda2000 CWE-89 critical	9.8
2024-11-01	CVE-2024-10658	SQL Injection vulnerability in Tongda2000 Office Anywhere 11.10 A vulnerability classified as critical was found in Tongda OA up to 11.10. network low complexity tongda2000 CWE-89 critical	9.8
2024-11-01	CVE-2024-37277	Unspecified vulnerability in Strangerstudios Paid Memberships PRO Authorization Bypass Through User-Controlled Key vulnerability in Paid Memberships Pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Paid Memberships Pro: from n/a through 3.0.4. network low complexity strangerstudios critical	9.8
2024-11-01	CVE-2024-37463	Unspecified vulnerability in Crmperks CRM Perks Forms Missing Authorization vulnerability in CRM Perks CRM Perks Forms allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects CRM Perks Forms: from n/a through 1.1.5. network low complexity crmperks critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical