Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-11-07 CVE-2024-10969 SQL Injection vulnerability in 1000Projects Bookstore Management System 1.0
A vulnerability was found in 1000 Projects Bookstore Management System 1.0.
network
low complexity
1000projects CWE-89
critical
9.8
2024-11-07 CVE-2024-47073 Unspecified vulnerability in Dataease
DataEase is an open source data visualization analysis tool that helps users quickly analyze data and gain insights into business trends.
network
low complexity
dataease
critical
9.1
2024-11-07 CVE-2024-10964 Classic Buffer Overflow vulnerability in Emqx Neuron
A vulnerability classified as critical has been found in emqx neuron up to 2.10.0.
network
low complexity
emqx CWE-120
critical
9.8
2024-11-06 CVE-2024-10919 OS Command Injection vulnerability in Didi Super-Jacoco 1.0
A vulnerability has been found in didi Super-Jacoco 1.0 and classified as critical.
network
low complexity
didi CWE-78
critical
9.8
2024-11-06 CVE-2024-10914 Unspecified vulnerability in Dlink products
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028.
network
low complexity
dlink
critical
9.8
2024-11-06 CVE-2024-10915 OS Command Injection vulnerability in Dlink products
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028.
network
low complexity
dlink CWE-78
critical
9.8
2024-11-06 CVE-2024-8615 Unrestricted Upload of File with Dangerous Type vulnerability in Eyecix Jobsearch WP JOB Board
The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_location_load_excel_file_callback() function in all versions up to, and including, 2.6.7.
network
low complexity
eyecix CWE-434
critical
9.8
2024-11-05 CVE-2024-10844 SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0
A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0.
network
low complexity
bookstore-management-system-project CWE-89
critical
9.8
2024-11-05 CVE-2024-10845 SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0
A vulnerability has been found in 1000 Projects Bookstore Management System 1.0 and classified as critical.
network
low complexity
bookstore-management-system-project CWE-89
critical
9.8
2024-11-05 CVE-2024-10687 SQL Injection vulnerability in Contest-Gallery Contest Gallery
The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal, Social Share Buttons plugin for WordPress is vulnerable to time-based SQL Injection via the $collectedIds parameter in all versions up to, and including, 24.0.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
contest-gallery CWE-89
critical
9.8