| 2024-11-09 | CVE-2024-10625 | The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_tmp_uploaded_file() function in all versions up to, and including, 17.7. network low complexity CWE-22 critical | 9.8 |
| 2024-11-09 | CVE-2024-10627 | The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_manage_file_chunk_upload() function in all versions up to, and including, 17.7. network low complexity CWE-434 critical | 9.8 |
| 2024-11-09 | CVE-2024-10284 | Missing Authentication for Critical Function vulnerability in Ce21 Suite
The CE21 Suite plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.2.0. | 9.8 |
| 2024-11-09 | CVE-2024-10586 | The Debug Tool plugin for WordPress is vulnerable to arbitrary file creation due to a missing capability check on the dbt_pull_image() function and missing file type validation in all versions up to, and including, 2.2. network low complexity CWE-862 critical | 9.8 |
| 2024-11-08 | CVE-2024-45764 | Unspecified vulnerability in Dell Enterprise Sonic Distribution
Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. network low complexity dell critical | 9.8 |
| 2024-11-08 | CVE-2024-10998 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-08 | CVE-2024-10995 | SQL Injection vulnerability in Codezips Hospital Appointment System 1.0
A vulnerability was found in Codezips Hospital Appointment System 1.0 and classified as critical. | 9.8 |
| 2024-11-08 | CVE-2024-10996 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-08 | CVE-2024-10997 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0
A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-08 | CVE-2024-10991 | SQL Injection vulnerability in Codezips Hospital Appointment System 1.0
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. | 9.8 |